Data Security Soc2 Compliance

All information and documents uploaded, downloaded, or transmitted through the Our Portal Service are processed using secure encryption. All communications, including website and API access, are transmitted over SSL (HTTPS).

Our data center is guarded 24/7/365 by onsite security personnel. Access requires multiple levels of authentication, including biometrics recognition procedures. The data center has security cameras that monitor both the facility premises as well as each area of the data center internally. Each facility is unmarked so as not to draw unwanted attention. The data center is SSAE16 SOC 2 Type II certified.

Strongdm.com provides a great overview of SOC 2.

SOC 2 is a framework to help service organizations demonstrate their cloud and data center security controls. After organizations started using the SAS 70 as a way to measure the effectiveness of an organization’s security controls, the SOC 2 was developed as a report focused only on security. The SOC 2 is rooted in criteria called the Trust Services Principles (renamed to Trust Services Criteria in 2018), which the AICPA (American Institute of CPAs) defines as:

Security – systems and data need to be protected against unauthorized access and anything that could compromise their confidentiality, integrity, availability, and privacy.

Availability – systems need to be available for use and operation.

Processing integrity – system processing must be timely, accurate and authorized.

Confidentiality – information delegated as confidential needs to have appropriate protections.

Privacy – any personal information collected must be used, retained, disclosed, and disposed of appropriately.

Similar to SOC 1, the SOC 2 offers a Type 1 and Type 2 report. The Type 1 report is a point-in-time snapshot of your organization’s controls, validated by tests to determine if the controls are designed appropriately. The Type 2 report looks at the effectiveness of those same controls over a more extended period – usually 12 months.

Thus, your data from your computer to us and from us to our lenders is completely secure.

Follow Us For Updates

0 Comments

Submit a Comment

Your email address will not be published. Required fields are marked *

What Can Zoom Mortgage Pros Do For You?

We find the best real estate loan program for your purchase or refinance and handle all everything from our initial conversation through closing and funding.

Get In Touch

Related Posts

Sponsoring Mother’s Day Bingo

Sponsoring Mother’s Day Bingo

by | May 16, 2022 |

Zoom Mortgage Pros, Inc (ZMPI) was proud to sponsor Mother’s Day Bingo to help support The Inland Gateway of Realtors (and California Association of Realtors) Housing Affordability Fund – a nonprofit 501(c)(3) dedicated to addressing California’s growing housing...

Security of Your Information

Security of Your Information

by | May 11, 2022 |

There is an old saying, “a chain is only as strong as its weakest link.”  No matter how strong the other links are, it will be the weak one that breaks and causes failure. This same concept applies to keeping your personal information safe. Zoom Mortgage Pros,...

Lunch and Learn Program

Lunch and Learn Program

by | Mar 21, 2022 |

Our goal is simply to educate seniors about the potential benefits of a reverse mortgage, dispel misconceptions many have, and provide access to experts should they have future questions.