Oro Receives SOC 2 Type II Attestation
Oro, Inc., the business application pioneer behind OroCommerce, the No.1 open-source B2B eCommerce solution, announced that it has completed its SOC 2 Type II audit, performed by KirkpatrickPrice. This attestation provides evidence that Oro has a strong commitment to security and to delivering high-quality services to its clients by demonstrating that they have the necessary internal controls and processes in place.
A SOC 2 audit provides an independent, third-party validation that a service organization’s information security practices meet industry standards stipulated by the AICPA. During the audit, a service organization’s non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality, and privacy of a system are tested. The SOC 2 report delivered by KirkpatrickPrice verifies the suitability of the design and operating effectiveness of Oro’s controls to meet the standards for these criteria.
Oro’s commitment to best-in-class organizational security practices mirrors the powerful security features seen in Oro applications (OroCommerce, OroMarketplace, OroCRM and OroPlatform), which use open-source architecture and powerful access controls and permission settings to ensure security across all business processes and all aspects of the buyer/seller relationship. With layered configuration, enterprise-grade encryption, and hourly backups and audit logs, Oro applications are designed to protect both merchants’ own data and their customer’s information at every step of the eCommerce journey.
“Oro always puts customers’ needs front and center — and that’s especially important when it comes to security,” said Yoav Kutner, CEO and co-founder of Oro. “This audit shows that Oro is committed to the highest standards of security in providing robust, enterprise-grade eCommerce experiences for B2B businesses and their customers. We take our users’ security, data, and confidentiality incredibly seriously — and that enables their customers to shop with the same level of absolute confidence.”
“The SOC 2 audit is based on the Trust Services Criteria,” said Joseph Kirkpatrick, President of KirkpatrickPrice. “Oro delivers trust-based services to their clients, and by communicating the results of this audit, their clients can be assured of their reliance on Oro’s controls.”
Read More: The Hidden Fees of Fraud