AICPA SOC logo

 

Committed to Service Organization Control (SOC) 2®

In the wake of various corporate scandals and mishandled data, non-compliance can have very serious and devastating consequences.

As a result, Trinity’s investment in a strong compliance program is critical to customers and our organization alike.

Trinity assists our lenders and banks by providing a detailed level of accountability and effectiveness through its fully-staffed Compliance Department. Given today’s industry environment, increasingly filled with new laws and regulations, Trinity offers a fully dedicated, in-house compliance manager and licensed attorney, who completes all of our third party assessments, analyzes business policies and procedures, monitors processes, and ensures continuous improvement and compliance readiness across the company as a whole.

Ultimately, Trinity's goal is to provide thorough business counsel and advice, ensuring compliance with all ongoing regulations while increasing value and reassurance to the financial institutions we serve.

 

SOC 2® Compliance 

Today, data privacy is an imperative, fundamental right. At Trinity, our top concern is ensuring your business is safe and secure.

The SOC 2 audit assures information security to banks and lending organizations because it requires service providers to securely manage data. To protect interests and privacy, security-conscious businesses consider SOC 2 compliance as a critical component and requirement for all of their providers.

 

What is SOC 2®

Simply put, SOC 2 is an auditing procedure that ensures service providers handle, manage, and store financial institutions' data properly to protect the interests of these organizations and the privacy of all clients. 

 

How is SOC 2® Attained?

Issued by a licensed CPA firm, a SOC 2 report assesses a service provider’s internal controls and processes and ensures it meets the standards of the Trust Services Criteria.

To manage the SOC 2 process, the American Institute of CPAs (AICPA) issued five “trust service principles” to consider and include: Security, Availability, Integrity processing, Confidentiality, and Privacy. Not all five apply to every business.

 

Trinity and SOC 2® 

Trinity achieved both the SOC 2 Type I and Type II attestations every year from 2019 through this year, 2023, authorized in the security and the availability trust service principles. These principles are most relevant to the services we offer to our clients.

Our SOC 2 reports were issued by KirkpatrickPrice, a licensed CPA firm specializing in information security, with expert auditors who hold Trinity’s controls and processes to a high standard.

Additionally, Trinity will continue to undergo annual SOC 2 audits to ensure all requirements are met, ultimately, we remain compliant.

This is our commitment.

 

“Protecting our customers’ most critical assets is not only our job – it’s a commitment that goes to the very heart of our relationship with each and every client.”

– Steve Fontaine, VP Services, Trinity 

 

"The successful renewal of our SOC 2 audit provides Trinity's customers assurance while preserving their most critical assets. We know our data security is absolutely covered -- from our software development process, to how our IT team operates, to our business continuity plan, to everything in between. The entire Trinity team is fully committed to working through every aspect of our security at the highest level, doing whatever it takes to ensure our customers' data is safe and secure at all times." 

– Brad Meyer, Founder, Trinity 

soc 2