ERI, a fully integrated information technology and electronics asset disposition (ITAD) provider and cybersecurity-focused hardware destruction company based in New York, announced it has completed the Service Organization Control (SOC) 2 Type 1 audit and has received its compliance certification. The company says this makes it the first and only SOC 2 certified e-waste recycler in the industry.
“Obtaining the SOC 2 Type 1 certification reinforces ERI’s ongoing commitment to security, data protection and the responsible recycling of all electronic devices,” says John Shegerian, ERI chairperson and CEO. “Our partners and customers can feel confident that we are making every investment to establish and maintain the highest level of security and compliance at the highest level.”
SOC 2 compliance certification affirms that ERI’s practices, policies, procedures and operations meet the SOC 2 standards for security and data protection. Type I testing confirms that the company’s systems and controls meet SOC 2 audit standards.
Independent audits are conducted to review companies’ effective implementation of employee controls and training, IT systems and risk management control, product discipline and vendor selection. ERI’s SOC 2 examinations for Type I compliance testing were conducted in accordance with standards from the American Institute of Certified Public Accountants.
Shegerian says ERI is now embarking on SOC 2 Type II compliance, which asserts that its internal systems and controls are effective at meeting audit standards on a continuous basis while ensuring that the personal assets of the organization’s potential and existing customers are protected.