Drummond Assurances Services’ SSAE 18 § ATC 315 Compliance Attestation reports on your organization’s compliance with specified laws, regulations, and rules, and/or you internal control over such compliance.
We currently provide four types of specific reports for EU General Data Protection Regulation (GDPR), US Drug Supply Chain Safety Act (DSCSA), the US 21st Century Cures (CURES), and US Health Information Technology for Economic and Clinical Health (HITECH) Act. We can also provide reports on other statutory compliance matters when we agree upon audit procedures and we have the requisite subject matter expertise in the area of law or regulation in our firm. The examination and report helps you and your customers determine your organization’s compliance with these critical regulations affecting IT businesses and provides your clients with confidence and trust they need to do business with you.
Completion of an ATC 315 audit of GDPR, DSCSA, CURES, or HITECH can help you meet compliance obligations with existing customers and attract new customers by demonstrating your organization’s compliance with these important laws facing US IT based business. It also provides your investors, board of directors, and executive management critical information they need to manage compliance risk. ATC 315 compliance also differentiates your firm from your competitors, and provides you with a competitive advantage in the marketplace.
ATC 315 also helps mature your internal controls over compliance and can help you manage compliance risk beyond what internal risk assessments and audits provide. ATC 315 can identify deficiencies in internal controls, pinpoint areas for improvement, and will strengthen your organization’s compliance posture.
Drummond Assurance Services’ unique Audit Once, Report Many methodology allows us to leverage other audits (SOC 1, SOC 2, SOC for Cybersecurity, SOC for Supply Chains), that Drummond Assurance Services and Drummond Group have completed on your organization as evidence to attest to your ATC 315 GDPR, DSCSA, CURES, or HITECH compliance. Our methodology also streamlines communication and evidence collection to complete the compliance audit as efficiently as possible. You will work with a CPA partner from Drummond Assurance Services with over 20 years in IT, security, and public accounting experience.