GovQA Confirms Commitment to World-Class Data Protection by Achieving IACPA Soc2 Type 2 Certification

Certification exceeds industry standards and is one of many measures to ensure comprehensive data protection for customers

GovQA LLC, a Granicus company, recently earned Soc2® Type 2 certification from the American Institute of CPAs (AICPA), confirming the company's commitment to continuous security monitoring, oversight and world-class data protection. GovQA is the leading provider of cloud-based SaaS automated workflow solutions for government compliance. 

The Soc2 framework is designed for service providers storing customer data in the cloud and evaluates the effectiveness of an organization's controls as they relate to five AICPA-defined trust services criteria: security, availability, processing integrity, confidentiality and privacy. 

"GovQA went beyond what's usual and required of standard tech companies and increased the scope of the audit to include a mapping to the NIST 800-53 controls," said Anthony Franciskovich, GovQA's Senior Director of Application Security. "We're especially proud of this accomplishment and the extra peace-of-mind it provides to our customers."

Franciskovich added that GovQA's commitment starts at the beginning of the software development lifecycle by building in controls that enhance the cybersecurity framework, risk posture, information protection and security standards required for federal information systems and organizations. The company further enhances security through a number of measures, including:

  • Use of a proprietary architecture that isolates client data in its own database to reduce vulnerabilities, provide more reliable operations and protect against hackers and other bad actors. 
  • Hosting through Microsoft Azure Government, which provides the most advanced, technically sophisticated ongoing security available to government today. 
  • Compliance with national standards, such as Criminal Justice Information Services (CJIS) requirements for data security and encryption and Health Insurance Portability and Accountability (HIPAA) guidelines for confidentiality and privacy. GovQA's employees are HIPAA and CJIS trained and certified.
  • Offering a full-time, dedicated, on-site security team—the only provider on the market with this level of commitment.

"Security at GovQA is truly ingrained in our culture," said Franciskovich. "We are committed to ongoing, strict compliance day-to-day, month-to-month, year-to-year to ensure our solutions are built securely and meet or exceed industry standards and best practices."

For more information about GovQA solutions, visit our website at http://www.govqa.com/.

About GovQA

GovQA LLC is part of Granicus, which connects governments with the people they serve by providing the first and only civic engagement platform for the public sector. GovQA is the leading provider of cloud-based SaaS automated workflow solutions for government compliance. With 20 years' experience in advanced technology for government agencies, GovQA combines trusted tools and security, proven government expertise, and a scalable platform that enables cities, counties, and state agencies to securely collect and control time-sensitive information within, across, and outside governments. GovQA's proprietary Peers in Public Records (PiPR) Index is the only index that tracks trends in public records for state and local governments. GovQA is headquartered outside of Chicago with coverage across the United States. Visit www.govqa.com for more information.

Source: GovQA

Share:


Categories: County Government

Tags: Data Security, Government Compliance, Technology


About GovQA LLC

View Website

GovQA, a Granicus company, is the leading provider of cloud-based SaaS automated workflow solutions for government compliance. Customers use our software to more easily process and manage public records and information requests.

GovQA LLC
900 S Frontage Rd (Ste. 110)
Woodridge, IL 60517
United States