MA Data Security
Is SAS 70 Certified.

SAS 70 On March 30, 2011, Marketing Associates successfully completed its SAS 70 Type II audit. Public accounting and consulting firm, Plante & Moran, conducted this rigorous six–month examination (July 1 – December 31, 2010), using the nationally recognized Statement on Auditing Standards (SAS). These stringent requirements are used to evaluate and test a service company’s internal operational controls and safeguards for hosting and processing data.


The findings of the initial SAS 70 Type I audit confirmed Marketing Associates’ highly secure internal controls. It was then followed by the stringent Type II audit, a six-month long examination that verifies we "walk the walk," making the security of our clients’ data a top priority.


Marketing Associates' achievement of SAS 70 Type II certification underscores the company’s commitment to data security best practices and disciplined internal controls. The full audit report details compliance in areas such as data integrity and backup, network monitoring, customer service, financial transaction processing, change management, deployment, separation of duties, and physical security. Marketing Associates’ report contains "zero exceptions" (no issues or non-compliances) for any of the company’s policies or processes.


The SAS 70 U.S. auditing standard was first established in 1992 and has
come to prominence since the implementation of the Sarbanes-Oxley Act of 2002. During the Type II audit’s six-month examination period, actual transactions are tested to ensure they are in accordance with the procedures established and verified during the previously completed, initial Type I audit. SAS 70 audits are always conducted by independent auditors using AICPA (American Institute of Certified Public Accountants) standards for fieldwork quality control and reporting.