Assurance & Certifications

C Spire’s Managed and Cloud Services follow industry-leading best practices and compliance-driven operational standards. From the internal controls we have put in place for our managed services, to the ways in which we operate and maintain our data centers, C Spire prides itself on the combination of assurances and certifications we have received from independent governance and compliance organizations.

Service Organization Controls (SOC) Reports

C Spire annually conducts an independent third-party SSAE18 SOC1 Type II and AT 101 SOC2 Type II audit. Both audits provide assurance that our controls are operating effectively to meet their objectives. 

The SOC1 includes onsite testing of our IT General Controls at our Data Center locations. 

The SOC2 includes onsite testing of the standard Trust Principles (TSP 100) for Security, Privacy, Confidentiality and Availability of information that is stored in our Managed & Cloud Systems.

What is SSAE18 SOC 1/SOC2 Type II Auditing?

Each year, an independent service auditor examines the processes and activities of our Managed Services Operations to ensure the effectiveness of the documented controls we have in place. The audit consists of onsite examination and testing at each of our data center facilities. C Spire’s SSAE18 Audit Report is available to clients upon request – please contact your Account Manager for details. For additional information, please click here.