Controls and Compliance

Public corporations and large insurance carriers entrust their outsourced technology service providers with two critical forms of Sarbanes-Oxley and HIPAA sensitive data:

• Privileged legal, claims and medical information
• Confidential legal spend and corporate financial data

SpectoWise is uniquely qualified to address and advise companies on the significant technology, security, audit and compliance risks and standards which must be addressed to ensure that these outsourced providers maintain the confidentiality of competitive business information and comply with federal compliance mandates and corporate security and audit standards.

SpectoWise employs advanced security techniques and business practices at every level to ensure the security and integrity of client data. SpectoWise constantly reviews its practices and the current state of the art to ensure that the highest levels of security are always maintained.

SpectoWise directly manages all aspects of its application development and delivery platform security and does not outsource any core or client-sensitive business process or data overseas or to other unmonitored third parties as many other legal technology vendors do to this day.

SpectoWise understands and appreciates the cost-cutting benefits of outsourcing and foreign offshoring enjoyed by other legal service providers.

SpectoWise equally appreciates that foreign offshoring and allowing access to sensitive application code that directly impacts a client’s legal and financial data to third parties represents a significant and unacceptable security risk which can potentially compromise a client’s data integrity and Sarbanes-Oxley/HIPAA compliance.

Sarbanes-Oxley / SAS 70 Controls

SpectoWise maintains strict internal control procedures. Access to any SpectoWise which interfaces with client data is strictly restricted on a “need to access basis.”

Strong anti-intrusion measures and 24×7x365 security monitoring ensure corporate-level controls are in place that meet the requirements of Section 404 of Sarbanes-Oxley. SpectoWise offer the use of a Tier-1 hosting facility and data center which meets SAS 70 Level II requirements.

Have other questions? Want to learn more? Why not get in touch.