Your information is safe with OMTI
OMTI has completed our first SOC 2 compliance audit. If you have been worried about the security of your data and files in RB9/RB Lite or MR8, you can now have verified proof of its safety in the RB/MR systems and OMTI in general.
We completed the third-party audit of the security of our systems and processes by Johanson Group, LLP; and in July 2022, we received a SOC 2 compliant with no exceptions result, which is the best rating. We can provide the full report to anyone who is interested in the details, but here are the basics:
What is SOC 2?
SOC 2 is a voluntary compliance standard for service organizations, developed by the American Institute of CPAs (AICPA), which specifies how organizations should manage customer data, especially when that data is managed in the cloud. SOC is short for System and Organization Controls. It provides an independent assessment of a company’s security and privacy controls environment.
There are 2 types of SOC 2 audits: Type 1 is a snapshot of a point in time that shows a company has documented security protocols. Type 2 is an on-going audit over a period of time in which the company demonstrates that not only does it have documented security protocols but that it follows them. That is the type of SOC 2 audit we undertook.
Why did OMTI get this audit?
Liability concerns with storing data in the cloud have created a demand for assurance of the security, confidentiality, and privacy of information processed by these systems. This is especially strong with the type of sensitive legal and medical data stored in RB and MR. These independent third-party audits are a way of proving we are handling your important information securely.
Want more info?
Visit our SOC 2 compliance page to find out more about SOC 2 and what OMTI is doing to safeguard your data. And if you would like a copy of the complete report on our SOC 2 compliance, you can file a report request using this form.