STOCK TITAN

ePlus Successfully Achieves Type 2 SSAE 18 and HIPAA Attestations

Rhea-AI Impact
(Neutral)
Rhea-AI Sentiment
(Positive)
Tags
Rhea-AI Summary

ePlus inc. (NASDAQ: PLUS) announced successful completion of multiple attestations for its Managed Services Center, Cloud Hosted Services, and OneSource software products. Key achievements include the Type 2 SSAE 18 examination (SOC 1) for Managed Services and OneSource products, along with SOC 2 for Cloud Hosted Services, focusing on security, availability, and confidentiality. These examinations cover the period from August 1, 2019, to July 31, 2020, affirming the effectiveness of controls in place. ePlus emphasizes its commitment to operational excellence in delivering IT solutions.

Positive
  • Successfully completed Type 2 SSAE 18 (SOC 1) examination for Managed Services Center and OneSource software, enhancing trust with clients.
  • Achieved SOC 2 Type 2 examination for Cloud Hosted Services, indicating strong security, availability, and confidentiality measures.
  • Independent attestation for HIPAA and HITECH compliance supports ePlus' commitment to data security.
Negative
  • None.

HERNDON, Va.--()--ePlus inc. (NASDAQ NGS: PLUSnews) today announced that it has successfully completed multiple attestations for controls surrounding its Managed Services Center, Cloud Hosted Services, Service Desk and OneSource family of software products.

Specifically, ePlus has achieved the Type 2 SSAE 18 (Statement on Standards for Attestation Engagements) examination, also commonly referred to as Service Organization and Controls (SOC 1) Report, for its Managed Services Center and OneSource family of software products that provide information technology acquisition, asset management, procurement, and catalog management software services. The Type 2 SSAE 18 examination was performed in accordance with the standards established by the American Institute of Certified Public Accountants (AICPA).

The company also successfully completed the Type 2 SSAE 18 examination (SOC2) for Cloud Hosted Services, which evaluates controls at a service organization relevant to security, availability, and confidentiality. The SSAE 18 examination provides customers and auditors with an understanding that the description of services and solutions provided by ePlus are fairly presented and suitably designed.

In addition, ePlus successfully completed an attestation examination (formally known as an Independent Practitioner’s Report on the Information Security Program Related to HIPAA and HITECH) for its Cloud Hosted Services.

All successful examinations were for the period of August 1, 2019, to July 31, 2020.

The SOC 2 Type 2 examination provides customers and auditors with an understanding that the description of services and solutions provided by ePlus are fairly presented, suitably designed, and tested to provide reasonable assurance that the applicable trust services criteria were met. SOC 2 Type 2 reports are attestation reports that opine on controls at a service organization relevant to the security, availability, or processing integrity of a system, or the confidentiality or privacy of the information processed for the user entities. ePlus was evaluated on the following trust services principles:

  • Security - Information and systems are protected against unauthorized access, unauthorized disclosure of information, and damage to systems that could compromise the availability, integrity, confidentiality, and privacy of information or systems and affect the entity's ability to meet its objectives.
  • Availability - Information and systems are available for operation and use to meet the entity's objectives.
  • Confidentiality - Information designated as confidential is protected to meet the entity's objectives.

The ePlus SSAE 18 report also includes the service auditor’s opinion that:

The description provided by ePlus fairly presents the Managed Services Center, Service Desk, Cloud Hosted Services and OneSource family of software products that were designed and implemented throughout the period of August 1, 2019, to July 31, 2020.

The controls related to the control objectives stated in the description were suitably designed to provide reasonable assurance that the control objectives would be achieved if the controls operated effectively throughout the period of August 1, 2019, to July 31, 2020, and user entities applied the complementary user entity controls contemplated in the design of ePlus’ controls throughout the period of August 1, 2019, to July 31, 2020.

The controls tested, which together with the complementary user entity controls referred to in the scope paragraph of the report, if operating effectively, were those necessary to provide reasonable assurance that the control objectives stated in the description were achieved, operated effectively throughout the period of August 1, 2019, to July 31, 2020.

“These successful SOC2 Type 1, Type 2 and HIPAA evaluations are testament to the diligence and rigor with which we provide services to our customers,” said Dan Farrell, senior vice president of global services for ePlus. “This operational excellence is the foundational element that fuels our reputation as a reliable, efficient and trusted partner who helps our customers meet their business needs.”

“ePlus continues to invest in the highest quality of Managed Services and has once again completed the SOC 2 Type 2 and HIPAA attestation examinations for its Hosted Cloud Services offerings,” said Justin Mescher, vice president of cloud and data center for ePlus. “In addition to the numerous audits spanning all areas of ePlus Managed Services, these examinations focus on the operational standards of our Cloud Managed Backup, Cloud Disaster Recovery, and Cloud Hosted Infrastructure services. This demonstrates our ability to scale our service offerings while incorporating the appropriate levels of controls to protect our customers’ most critical data.”

About ePlus Cloud Hosted Services

ePlus Cloud Hosted Services enable organizations to leverage consumption-based cost models to better meet cyclical business demands and limit upfront capital investments. The customized suite of offerings leverages enterprise-class technology from top tier vendors and includes ePlus Cloud Managed Backup, ePlus Cloud Disaster Recovery, and ePlus Cloud Hosted Infrastructure. For more information, visit www.eplus.com/services/cloud-hosted-services.

About ePlus Managed Services

ePlus Managed Services help enterprises proactively control their IT infrastructure and off-load a significant burden of day-to-day IT tasks in order to optimize operations and manage risk. ePlus has delivered Managed Services for more than 10 years to a wide range of customers across multiple industry verticals through its 24/7/365 Managed Services Centers. For more information about ePlus Managed Services, visit www.ePlus.com/ManagedServices/Pages/default.aspx.

About ePlus inc.

ePlus is a leading consultative technology solutions provider that helps customers imagine, implement, and achieve more from their technology. With the highest certifications from top technology partners and lifecycle services expertise across key areas including security, cloud, data center, collaboration, networking and emerging technologies, ePlus transforms IT from a cost center to a business enabler. Founded in 1990, ePlus has more than 1,500 associates serving a diverse set of customers in the U.S., Europe, and Asia-Pac. The Company is headquartered at 13595 Dulles Technology Drive, Herndon, VA, 20171. For more information, visit www.eplus.com, call 888-482-1122, or email info@eplus.com. Connect with ePlus on Facebook, LinkedIn, Twitter and Instagram. ePlus, Where Technology Means More®.

ePlus®, Where Technology Means More®, and ePlus products referenced herein are either registered trademarks or trademarks of ePlus inc. in the United States and/or other countries. The names of other companies, products, and services mentioned herein may be the trademarks of their respective owners.

Statements in this press release that are not historical facts may be deemed to be “forward-looking statements.” Actual and anticipated future results may vary materially due to certain risks and uncertainties, including, without limitation, risks related to COVID-19, including but not limited to its possible effects on the availability of and demand for our products and services, our ability to efficiently and flexibly manage our business amid uncertainties related to COVID-19, and its impact on the economy, possible adverse effects resulting from financial market disruption and fluctuations in foreign currency rates, and general slowdown of the U.S. economy such as our current and potential customers delaying or reducing technology purchases or put downward pressure on prices, increasing credit risk associated with our customers and vendors, reduction of vendor incentive programs, and restrictions on our access to capital necessary to fund our operations; our ability to consummate and integrate acquisitions; the possibility of goodwill impairment charges in the future; significant adverse changes in, reductions in, or losses of relationships with major customers or vendors; the demand for and acceptance of, our products and services; our ability to adapt our services to meet changes in market developments; our ability to implement comprehensive plans to achieve customer account coverage for the integration of sales forces, cost containment, asset rationalization, systems integration and other key strategies; our ability to reserve adequately for credit losses; our ability to secure our electronic and other confidential information or that of our customers or partners; future growth rates in our core businesses; our ability to protect our intellectual property; the impact of competition in our markets; the possibility of defects in our products or catalog content data; our ability to adapt to changes in the IT industry and/or rapid change in product standards; our ability to realize our investment in leased equipment; our ability to hire and retain sufficient qualified personnel; and other risks or uncertainties detailed in our reports filed with the Securities and Exchange Commission. All information set forth in this press release is current as of the date of this release and ePlus undertakes no duty or obligation to update this information.

Contacts

Kleyton Parkhurst, SVP
ePlus inc.
kparkhurst@eplus.com
703-984-8150

FAQ

What recent attestation has ePlus PLUS achieved?

ePlus has successfully completed the Type 2 SSAE 18 (SOC 1) examination for its Managed Services Center and OneSource software products.

What is the significance of ePlus PLUS achieving SOC 2 Type 2 certification?

The SOC 2 Type 2 certification demonstrates that ePlus has met rigorous security, availability, and confidentiality standards for its Cloud Hosted Services.

What period do ePlus PLUS attestation reports cover?

The attestation reports cover the period from August 1, 2019, to July 31, 2020.

How does ePlus PLUS ensure data security in its cloud services?

ePlus maintains data security through rigorous SOC 2 Type 2 and HIPAA compliance examinations, confirming effective controls around security and confidentiality.

ePlus Inc

NASDAQ:PLUS

PLUS Rankings

PLUS Latest News

PLUS Stock Data

2.21B
26.24M
2.09%
98.05%
2.69%
Software - Application
Wholesale-computers & Peripheral Equipment & Software
Link
United States of America
HERNDON