SAS 70 Type II Certification

At Data Paradigm, the successful completion of a SAS 70 Type II audit for certification was essential. It's testimony to the fact that we have the necessary procedures in place to fully secure and protect clients' online data assets within our corporate data center facilities.

Recognized internationally as an auditing standard, a SAS 70 Type II Certification shows that a service company has completed an in-depth audit of their control activities, usually information technology and related processes, by an outside third-party.

As audited by the accounting firm Specialized Security Services, Data Paradigm's certification verifies that our controls in hosting and IT infrastructure services including security practices, physical and logical facility access, environmental controls, data backups, customer service practices, and management policies were found to be operating with sufficient effectiveness. With this certification in hand, Data Paradigm clients are assured that their online data assets are secure and will continue to be secure, as we recommit to a SAS 70 Type II audit each year.

Benefits of Partnering with a SAS 70 Type II Certified Company

  • Provides a third-party confirmation that the services promised and supplied by Data Paradigm are carried out in a controlled fashion.
  • Verifies that the enacted controls are fair and were properly designed to meet their specific purpose.
  • Provides clients with an independent assessment of the controls' operating effectiveness as calculated over a period of time.
  • Supplies clients with the resulting audit report which can be used in place of performing the procedure in-house for compliance with various government regulations including the Sarbanes-Oxley Act.

Requesting Access to Data Paradigm's 2009 SAS 70 Report

A SAS 70 report details an organizations controls, which includes aspects of security, and business infrastructure. This information can and always should be considered sensitive. As Data Paradigm provides services to many customers, protecting the data assets of our customers is the highest priority to us, and the reason these guidelines are in place.

Data Paradigm can offer a letter from our auditors, verifying that we have completed the SAS 70 examination, which our customers may share with their auditors or interested parties.

If you would like to request access to review Data Paradigm's full SAS 70 Report, please review the guidelines below:

  1. Access will be provided to review the report at the Data Paradigm offices in Dallas, Texas.
  2. All parties present must sign a Non-Disclosure and Confidentiality Agreement to request the SAS 70 Report.
  3. The SAS 70 Report is intended for review by customers of Data Paradigm only. Copies of the SAS 70 Report may not be made.
  4. Any exceptions for requesters that are not currently Data Paradigm customers are made at the sole discretion of Data Paradigm.
  5. A customer requesting the SAS 70 Report MUST be in good standing, and must NOT be late on payment.
  6. Data Paradigm reserves the right to refuse the report to any requesters.

To request a copy of the letter from our auditors, or to set up an appointment to review the full report, please contact sas70@dataparadigm.com.



DPI Certifications

SAS 70 Type II Certified

PCI Certified Class 1 Service Provider

DPI has undergone a full SAS 70 Type II Certification Audit as well as a rigorous PCI DSS Security Audit. Click the logos above for complete details.


Direct Selling Association

Direct Selling Association

As an approved Direct Selling Association Supplier Member, Data Paradigm has demonstrated strict adherence and commitment to the Direct Selling Association's Code of Ethics.