Read more about the current Greenbook proposals. ...
This site uses cookies to ensure that we give you the best user experience. Cookies assist in navigation, analyzing traffic and in our marketing efforts as described in our Privacy Policy.
On June 15, the Assurance Services Executive Committee (ASEC) of the American Institute of CPAs (AICPA) issued an exposure draft proposing revisions to TSP section 100, Trust Services Principles and Criteria (TSPC) for Security, Availability, Processing Integrity, Confidentiality and Privacy for Service Organization Control (SOC) 2 reports. These revisions are part of a continual effort from the ASEC to update the TSPC and keep them relevant in the changing technology and business environment. The proposed effective date for the revised TSPC is for periods ending on or after March 15, 2016 with early implementation permitted.
The most significant proposed change is the creation of a new set of privacy criteria. The current privacy criteria, which follow the “Generally Accepted Privacy Principles (GAPP)” will be superseded by the new set of privacy criteria. The new set of privacy criteria will be made up of the set of common criteria and the additional criteria for the privacy principal. Previously, there was no relationship between the common criteria and GAPP. In addition, the “Illustrative Risks and Controls” section of TSP section 100 will be revised to include illustrative risks and additional illustrative controls related to the new set of privacy criteria.
Practitioners and service organizations are encouraged to review the proposed changes and to provide comments by August 15, 2015.
Please contact our SOC experts in Pittsburgh, PA or Columbus, OH to find out how the proposed revisions to TSP section 100 will affect your organization and your SOC 2 report and visit our SOC page for more information on SOC reports and how they can help your organization.
Read more about the current Greenbook proposals. ...
Learn more about the regional and national supply chain implications of the Baltimore Key Bridge collapse. ...
We’d love to hear from you. Drop us a note, and we’ll respond to you as quickly as possible.
Ask us
[email protected]
p:412.261.3644
f:412.261.4876
[email protected]
p:614.621.4060
f:614.621.4062
[email protected]
p:571.380.9003