The Statement on Auditing Standards No. 70: Service Organizations (SAS 70) is a widely recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA). SAS 70 indicates that a service organization has been through an in-depth audit of their internal controls, especially with regard to information technology. Service organizations are defined as entities that provide outsourcing services that impact the control environment of their customers, and can include insurance and medical claims processors, trust companies, hosted data centers, application service providers, managed security providers, credit processing organizations and clearinghouses.

A SAS 70 audit can be a daunting prospect if you’re not prepared. Fortunately, our expertise can help you review and refine your systems before the audit takes place. Our goal is to make the process as efficient (and pain-free) as possible and to put you in the best possible position for becoming SAS 70 compliant.