SOC 2 and SOC 3 Reports
We Keep Your Data Safe
Clean Power Research Complies with SOC 2 Security Standards
Clean Power Research cloud software services comply with Service Organization Controls standards for operational security, availability and confidentiality.
The American Institute of Certified Public Accountants (AICPA) developed the Service Organization Controls (SOC) framework to serve as a standard for controls that maintain the confidentiality and privacy of information stored and processed in the cloud. This aligns with the International Standard on Assurance Engagements (ISAE), the reporting standard for international service organizations.
Audits utilizing the SOC framework can be “SOC 1” or “SOC 2”. A SOC 2 audit examines a cloud service provider’s system based on the AICPA Trust Service Principles and Criteria. SOC 2 applies to Clean Power Research’s services.
At the conclusion of a SOC 2 audit, the service auditor delivers an opinion in a SOC 2 Type 2 report, which describes the service provider’s system and assesses the fairness of the service provider’s description of its controls. It also evaluates whether the service provider’s controls are designed appropriately, were in operation on a specified date, and were operating effectively over a specified time period.
A SOC 3 report is a shortened summary of the SOC 2 Type 2 audit report. It is made available for users who want assurance about the service provider’s controls but don’t need a full SOC 2 report. A SOC 3 report can be conferred by the service auditor only in cases where the service provider receives an unqualified audit opinion for SOC 2.
Frequently Asked Questions
What is documented in the Clean Power Research SOC Reports?
What Clean Power Research software services are covered by the SOC Reports?
Who performs the independent third-party audit of Clean Power Research’s software services for the SOC reports?
The external service auditor—the entity performing the audit and preparing the SOC reports—for Clean Power Research’s services is Moss Adams LLP.