On December 7th, SimpleNexus announced receipt of its Service Organization Control [SOC] 2 Type II attestation engagement report, providing independent validation that the company's internal security controls are in accordance with the American Institute of Certified Public Accountants' applicable Trust Services Principles and Criteria.
The report, prepared by the auditing firm The Owen Group, evaluated SimpleNexus' mobile mortgage services, mortgage software integrations, and relationship based marketing systems, focusing on organizational and operational safeguards against unauthorized access, both logical and physical. The key criteria analyzed included policies, communications, procedures and monitoring.
The review process confirmed SimpleNexus' adherence to the AICPA's Trust Principles related to security controls. The AICPA created the SOC guidelines to provide an authoritative benchmark for service organizations to demonstrate implementation of proper control procedures and practices. Type II reports include detailed testing of the operational effectiveness of the described systems' security controls.
"The SOC 2 attestation engagement report clearly illustrates that security is of paramount importance to SimpleNexus," said Matt Hansen, the company's CEO. "SimpleNexus undergoes independent audits annually, for certification as a fintech vendor in the mortgage space.
"Public and private companies rely on SimpleNexus to drive new business as well as close loans more efficiently. Today's announcement provides assurance that we have the systems and control procedures in place to safeguard clients' sensitive information. It is one more reason why SimpleNexus is recognized as the mortgage industry's gold standard in mobile mortgage solutions."
Learn more at SimpleNexus.com and the SimpleNexus blog; follow updates on Twitter: @simplenexus or on Facebook.