GRM Document Management - 800.820.8311
GRM Blog graphic
Press Releases

GRM Completes Service Organization Controls 2 (SOC 2) Report under AT Section 101

九月 18, 2014

September 18, 2014

Jersey City, New Jersey—GRM, a leader in full cycle records management, today announced that it has recently completed its Service Organization Controls 2 (SOC 2) examination under AT Section 101, Attest Engagements (AICPA, Professional Standards) for the period August 1, 2013 through July 31, 2014 that was performed by an independent auditing firm.

Completion of the SOC 2 Type II examination indicates that selected GRM processes, procedures and controls have been formally evaluated and tested by an independent accounting and auditing firm.  The examination included the company’s controls related to the Trust Services Principles and Criteria of Security and Confidentiality.

An SOC 2 examination is performed in accordance with AT Section 101, Attest Engagements (AICPA, Professional Standards).  SOC 2 is designated as an acceptable method for a user entity’s management to obtain assurance about service organization internal controls over Security and Confidentiality without conducting additional assessments.

An SOC 2 examination is widely recognized, because it represents that a service organization has been through an evaluation of their control activities as they relate to the applicable Trust Services Principles and Criteria.  A Type II report not only includes the service organization’s system description, but also includes detailed testing of the design and operating effectiveness of the service organization’s controls.

“At GRM, we ensure confidentiality and security as part of our service offering to our clients,” said GRM Head of Security Peter Friedman, “so to complete this examination further underlines the importance of data protection in our facilities.”

More About GRM
Trusted for over 25 years, GRM Document Management is a leading provider of information management solutions. We continue to demonstrate technological leadership by bringing proprietary innovation and new levels of cost efficiency to document storage, digital document management, data protection and certified destruction. Our fully integrated products and services include: a blended paper to digital solution, Healthcare Release of Information, eAccess remote inventory control, the Cloud-based Online Record Center, business process workflow automation, and GRMpedia, a retention regulatory research tool.

GRM’s full service capabilities are available in major markets throughout the U.S., including, Atlanta, Austin, Baltimore, Boston, Chicago, Dallas, Houston, Indianapolis, Los Angeles, Miami, New Jersey, New York, Philadelphia, San Francisco, and Washington, D.C. GRM is also currently the largest records management company in China and has a South American facility in Lima, Peru.

For more information, visit the GRM web site at or look for updates on our blog at

One Response

  1. Jennie Klaesson说道:


    We are a scanning provider company in Northern Europe and are looking for a partner in China who would handle our services in document management meaning scanning and OCR of purchase invoices.

    Please call me and send an e-mail if your company can be one option.

    Regards, Jennie Klaesson, Partner Manager


What Are Your Needs?