Loading...
System and Organization Controls (SOC) Reports are independent third-party examination reports that demonstrate how service providers achieve key compliance controls and objectives. These reports help user entities and their auditors understand the service provider controls established to support operations and compliance pertaining to internal controls over financial reporting. SOC Reports are prepared in accordance with the American Institute of Certified Public Accountants (AICPA), Statement on Standards for Attestation Engagements (SSAE) 18, AT-C 320 (SOC 1) and can also comply with the International Standards for Assurance Engagements (ISAE) No. 3402, Assurance Reports on Controls at a Service Organization.
Visit the AICPA and International Auditing and Assurance Standards Board (IAASB) websites for more information:
AICPA –
https://www.aicpa-cima.com/topic/audit-assurance/audit-and-assurance-greater-than-soc-1
IAASB –
As a business to business service provider, CSG provides services critical to our customers’ business operations, revenue and payments management, and customer communications. The SOC 1 Report provides information to customers and their auditors regarding CSG’s control environment that may be relevant to their internal controls over financial reporting and assists in their assessment and opinion of the effectiveness of their controls.
CSG’s SSAE 18 / ISAE 3402 SOC 1 Type II Report, which is prepared in accordance with both the AICPA AT-C 320 and IAASB ISAE 3402 standards, describes the CSG control environment and the results of the external audit of the CSG-defined controls and objectives. The Report, published annually in December, covers the twelve-month period from October 1 through September 30.
The annual SOC 1 report is available to CSG’s customers, and their auditors, who use the products and services included within the report. Instructions for downloading the report can be found here.
The scope of CSG’s 2025 SOC 1 Type II and 2025 Managed Services SOC 1 Type II reports is included here.
The control objectives within CSG’s 2025 SOC 1 Type II and 2025 Managed Services SOC 1 Type II reports are included here.
For questions or to request more information, please contact us here.
Need more details?
Our team is here to provide clarity. Reach out to learn more about CSG’s security measures, compliance certifications, or policies.