ISAE 3000 SOC2 Type 1

Fabasoft completed the SOC2 Type 1 audit for its Fabasoft Cloud, marketed under the name Fabasoft Business Process Cloud since the beginning of 2020. KPMG Alpen-Treuhand GmbH Wirtschaftsprüfungs- und Steuerberatungsgesellschaft issued the audit report.

As part of the audit process, KPMG checked whether the Trust Service Criteria (TSC) for Security – issued by the American Institute of Certified Public Accountants (AICPA) – are being adhered to. Therefore the existing internal control mechanisms for the services offered – for example with regard to risk minimization, access controls, monitoring measures or communication – were examined and documented. The audit took the form of an ISAE 3000 Type 1 audit (testing the design and implementation for a cut-off date) and lasted approximately four weeks. Fabasoft received the final audit results as an ISAE 3000 SOC2 Type 1 report.