{"version":"1.0","provider_name":"OTAVA","provider_url":"https:\/\/www.otava.com","title":"What to Look for from a SAS 70 Hosting Provider","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"6b89ZmourN\"><a href=\"https:\/\/www.otava.com\/blog\/sas-70-hosting\/\">What to Look for from a SAS 70 Hosting Provider<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/www.otava.com\/blog\/sas-70-hosting\/embed\/#?secret=6b89ZmourN\" width=\"600\" height=\"338\" title=\"&#8220;What to Look for from a SAS 70 Hosting Provider&#8221; &#8212; OTAVA\" data-secret=\"6b89ZmourN\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/\/# sourceURL=https:\/\/www.otava.com\/wp-includes\/js\/wp-embed.min.js\n\/* ]]> *\/\n<\/script>\n","description":"Update: SAS 70 reports only on controls related to financial reporting. If you need assurance of controls directly related to data centers, including privacy, security and availability, look for a SOC 2 report. SAS 70 was replaced by SSAE 16 in June 2011. Many of our clients require SAS 70 because their SaaS products are being delivered to publicly held companies or their customers require SAS 70 as a &#8220;good housekeeping&#8221; seal of approval. Others look at SAS 70 as a way to validate that the proper physical and electronic security mechanisms are in place to keep their servers and data safe. So a couple of thoughts: 1) From a hosting provider&#8217;s perspective, we&#8217;ve found SAS 70 to be one of the best investments we&#8217;ve made (although very expensive in both time and dollars perspective). It helped us solidify, procedure-ize and document everything we do including, physical security to network security, and change orders. It&#8217;s increased our quality and up-time, and helped us eliminate errors and outages caused by human error. Just like any certification, I&#8217;m sure that SaaS hosting providers range from simply using SAS70 as a &#8220;stamp&#8221; and others that use the process to drive their operations. The...","thumbnail_url":"https:\/\/www.otava.com\/wp-content\/uploads\/2019\/04\/SAS-70-dc-Logo-200.jpg"}