Within any organization, to minimize errors, misstatements and fraud, a system of good internal controls is necessary. Part of that system should include access to third party reports and certifications issued by external auditors for a customer’s vendors and service providers.

This business guide lists down several independent, third-party audited reports and certifications issued by Oracle NetSuite that describe the design and operating effectiveness of customer-impacting controls in place such as:

   ✓ Audited financial statements/SEC filings

   ✓ ISO 27001 Certification

   ✓ AICPA SSAE 18 Type II/IAASB ISAE 3402 (SOC1)

   ✓ Service Organization Control 2 Type II (SOC2)

   ✓ Payment Card Industry Data Security Standard (PCI-DSS)

   ✓ Payment Application Data Security Standard (PA-DSS)

   ✓ Privacy Certifications