Digital Forensic Process—Preservation / Collection
By John Ahearne, Forensic Analyst This article is part of a series that delves into…
May 23, 2017: A Primer on Current Android Device Forensics (Enfuse)
Rene Novoa, DriveSavers Sr. Manager of eDiscovery and Digital Forensics, will be joining Ronen Engler,…
Digital Forensics Process—Identification
By Rene Novoa, Senior Manager of eDiscovery and Digital Forensics This article is part…
Digital Forensic Process—Introduction
By Rene Novoa, Senior Manager of eDiscovery and Digital Forensics More and more aspects of…
March 15–18: ABA TECHSHOW Conference and Expo Booth #917
Chicago, IL • March 15–18 • Booth #917 The ABA TECHSHOW Conference and Expo is where…
Warning: Internet of Things Holds Hidden Dangers
By Rene Novoa, Senior Manager of eDiscovery and Digital Forensics Law enforcement and civil litigators…
Cybercrime Forecast: Upswing in 2017
By Michael Hall, Chief Information Security Officer Computer security threats aren’t going away this…
DriveSavers CTO Joins USC Information Technology Advisory Board
Industry leader helps shape the future of data recovery and eDiscovery through an advisory role…
CTO Chris Bross Speaking at Enfuse 2016 May 23–26 Booth 223
CEIC is now Enfuse! This conference will take place May 23–26 in Las Vegas. Enfuse…
WPBF: Special Report: Can information be retrieved from Austin’s cellphone?
Originally published by ABC News affiliate WPBF 25 News. Teens missing at sea since July…
DriveSavers Teaching at HTCIA Training Event May 11–13
Silicon Valley HTCIA 2016 "Back to the Basics" Training Event Milpitas, CA • May 11–13…
NBC News: Families Cling to Hope That iPhone Holds Clues to Florida Teens Lost at Sea
Originally published by NBC News. An iPhone found stashed inside a compartment of the boat…
DriveSavers is the only data recovery service provider in the industry to post proof that it undergoes an annual, company-wide SOC 2 Type II audit to guarantee data security during the data recovery process. With more than 10,000 business partners worldwide serving the financial, healthcare, government and corporate business sectors, it’s absolutely essential for our customers to know that DriveSavers can protect the integrity of their data.
—Michael Hall, CISO, DriveSavers
About the Clifton Larson Allen
LLP SOC 2 Type II Audit
DriveSavers undergoes an annual SOC 2 Type II audit of its internal data hosting and processing controls to guarantee that our data recovery services uphold the stringent data security and privacy protocols mandated by the corporate clients and government agencies we serve. These annual audits are conducted by control-oriented professionals from CliftonLarsonAllen LLP, an independent firm with experience in accounting, auditing and information security. At the end of each annual audit period, a successive six-month “look back” audit begins, and an updated report is generated reflecting the dates for which records were reviewed. The “look back” period is reflected in the dates on the report posted here.
Benefits of Working with
an Audited Data Recovery
Service Provider
By posting proof that DriveSavers undergoes a company-wide audit on an annual basis, it differentiates itself from all other data recovery service providers in the industry today. This audit verifies our qualifications to handle enterprise-class recoveries, and support those customers who must maintain compliance with data privacy and data security regulations such as:
- NIST (National Institute of Standards & Technology) SP 800.34 (Rev.1)
- HIPAA (Health Insurance Portability and Accountability Act)
- FERPA (Family Educational Rights and Privacy Act)
- SOX (Sarbanes-Oxley Act of 2002)
- GLBA (Gramm-Leach-Bliley Act of 1999)
An annual audit guarantees our customers and partners that only authorized data recovery engineers have access to their personal and confidential data. Once the recovery process is complete, data is stored on our secure network until the integrity of the recovered data is verified. Custom solutions are offered for recoveries on encrypted files and drives. Data is protected during transit to and from our facility. Should instant access of the recovered data be required, data is transmitted via a secure FTP site. Secure and permanent data destruction is available upon request.
An annual SOC 2 Type II audit is mandated by many of our data recovery customers:
- Publicly-traded companies who must comply with the Sarbanes-Oxley Act of 2002 through a SOX audit for SOX compliance
- Companies with legally-protected customer information, such as financial institutions
- Businesses that must protect health information (HIPAA)
- Universities with protected student information (FERPA)
- Loan originators and credit rating agencies and their providers (FCRA, GLBA)
- Providers of services involving eCommerce (WebTrust, PCI)
HIPAA Security Compliance
Tested and Trusted
In addition to our annual SOC 2 Type II audit, DriveSavers also undergoes HIPAA security compliance audits conducted by independent third parties. HIPAA security compliance validates our ability to handle protected health information on behalf of healthcare providers, health plans, healthcare clearinghouses and all other HIPAA covered entities in the healthcare industry.