Why Choose Recordsforce?

Best in class protection for your documents!

Recordsforce’s compliance-driven operating practices and client information management procedures ensure best-in-class protection and security for your critical information.

Safety, Security & Privacy Compliance

Sharing your documents and information with a third-party can raise anxiety and concern. We employ practices and procedures to ensure your information is protected, from employee background checks  to encrypted data transmissions.

Recordsforce’s solutions help you comply with the difficult information management requirements, providing the necessary safeguards to ensure your information is both protected and in compliance.

Redundancy

If you are working in a paper-based environment, a flood, fire or other catastrophic event could spell the end of your business. And even with digital content, you may not have enough or the right back-ups in place to ensure disaster recovery.

With Recordsforce’s solutions, you have at your disposal a wide variety of redundancy options, from simple duplicate optical archiving to full-fledged near real-time back-up of your information on our content management systems.

request a meeting
hipaa compliant digital mailroom
ssae 18 soc 2 type 2 digital mailroom
fda 21 cfr part 11 compliant digital mailroom

SSAE-18 SOC 2 TYPE 2 Compliant

Recordsforce was the first document scanning service bureau in the nation to obtain the SAS-70, SSAE-16 and SSAE-18 Service Organization Controls Report Certification.

Utilizing Recordsforce to digitize your documents gives you the comfort of knowing that the Recordsforce systems have achieved a level of safeguarding few others in the industry have. This globally accepted standard also means your firm can benefit for the mitigated risks while saving the cost and time to send your own auditors to audit Recordsforce.

U

What is the SSAE-18 and Service Organization Controls Report?

The SSAE-18 (Statements on Standards for Attestation Engagements No. 18) Audit is a review, measurement and comparison on controls within a service organization; a standard put forth by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA). The SSAE-18 includes a complete review of a data center’s controls, processes and design, operational controls and policies, and the management’s description of system or service to a professional standard conducted by a third-party auditor.

I've heard of SAS-70 and SSAE-19... Isn't this just the same thing?

Not at all! Beyond being a more aligned with international accounting practices, the SSAE-18 both updates and vastly improves on the SAS-70 and SSAE-16 audits.

"System" vs. "Controls"

Though called the Service Organization Controls Report, a SSAE-16 actually requires a “systems” description, while the SAS-70 merely called for a description of “controls”.  A “system” is the services provided, along with the supporting processes, controls, policies, procedures, personnel and operational activities, which constitute the service organization’s core activities that are relevant to their clients. The SSAE-16 is a stronger and broader standard, whereby the SAS-70 “controls” are simply part of a bigger picture.

Written Management Assertion

The SSAE-18 and SSAE-16 requires written management assertion, something that was never required for a SAS-70.   This assertion encompasses a number of essentials, including that: (i) the “systems” description are fairly presented; (ii) the control objectives were both suitably designed and operating effectively; and, (iii) the criteria used for making assertions, accounted for in additional statements with supporting material, were in place and consistently applied.

What Does The SSAE-18 Mean For My Records?

Outsourcing services that involve your company’s data and information can have a material financial impact on your organization. A SOC serves as a universally accepted validation that the appropriate system(s) have been implemented to safeguard your data and information.

fda l21 cfr part 11 compliant

FDA 21 CFR Part 11 Compliance

In order for the US Food and Drug Administration (FDA) to accept electronic records, the computer systems used to generate and store data must comply with the 21 CFR Part 11 guidelines. The 21 CFR Part 11 details the criteria under which electronic records and signatures are considered to be trustworthy and equivalent to paper records. These requirements include:

  • Accurate record generation
  • Records must be protected
  • Limited system access
  • Audit trail
  • Operation system checks
  • Device checks

Recordsforce meets these standards and requirements, making your data and electronic documents FDA 21 CFR Part 11 compliant.

HIPAA Compliant Record Scanning

HIPAA compliance is vital for anyone working in the healthcare industry. With Recordsforce, you can be sure that your retention processes maintain HIPAA compliance. Whether it be HIPAA compliant document retention, or another process related to paper, put the Recordsforce experts in your corner and be sure that you’re staying compliant.

hipaa compliant digital mailroom

As a Recordsforce client, with PACE you can:

  • Commence document tracking before they leave your office
  • Check status on specific batches as they progress through our process
  • Make real-time requests for your documents
  • Confirm fulfillment of turn-around requirements
  • Create tickets regarding documents that require special care or rework

Real-Time Access To Your Records

Letting go of your documents, a core source of information to your department or even entire company, can feel…well, scary! PACE eliminates those fears, and provides you with peace of mind with the client portal. Recordsforce’s PACE system is the only system that gives you, the client, real-time access to the status of your records while they are running through our document conversion process.

    PACE  was designed to ensure the tightest alignment with your specific requirements for each of your unique and individual record sets. Developed as a corrective action, preventative action (CAPA) system, PACE places the appropriate controls in place for each step Recordsforce takes in handling your records. These control assurances work to further ensure on-going compliance with our SSAE-18 Type II Audit’s systems and controls objectives.

    Z

    Performance

    State of the art scanning technology & highly trained and experienced staff.

    U

    Accuracy

    Strict quality control process ensuring the highest of accuracy.

    Commitment

    We operate within a secure SSAE-18 SOC II Compliant facility.

    Experience

    We have over 20+ years of document scanning & management experience.

    Schedule A Meeting