Salesforce ERP Security & Controls
Trust in Rootstock Cloud ERP
Nothing is more important than the security of your data and applications. This is one reason why Rootstock chose the Salesforce Platform for our cloud ERP applications. The Salesforce Platform was built on the principles of trust and transparency and is certified by many standards and practices organizations (AICPA SOC1, SOC2 and SOC3, TRUSTe and more). Rootstock Software is also certified as SOC 1- and SOC 2-compliant. You can trust the combination of Rootstock Cloud ERP and the Salesforce Platform to keep your data safe with complete transparency to system performance and security information.
Today, manufacturers, distributors, and supply chain organizations collect, manage and analyze more data via ERP systems than ever before. These organizations leverage this data throughout their business, but they also want to ensure proper controls around this information. In striving to deliver a superior Cloud ERP solution, we at Rootstock Software have implemented sophisticated controls to safeguard our customer data.
To attest to the quality of our controls, we completed a SOC 1 (SSAE 18) Type II and SOC 2 Type II audit examination, which validated our data security standards and operations, and demonstrated our commitment to the highest level of data integrity.
Moss Adams LLP, one of the largest public accounting firms in the United States, conducted the evaluation. Through this audit, it confirmed Rootstock had quality and suitable levels of controls and security in place for SOC 1 and 2 compliance:
Rootstock’s completion of this SOC audit is among the highest and most rigorous data integrity accomplishments that can be achieved. Successful completion of this examination illustrates Rootstock’s ongoing commitment to create and maintain data integrity in a secure operating environment for the benefit of confidential information.
Rootstock received a service auditor’s report demonstrating that our policies, procedures, and infrastructure are suitably designed and operate effectively to meet or exceed stringent SOC 1 and SOC 2 criteria.
With these business processes in place, customers can rest assured that we take data integrity and security seriously, and as a result, our customers can stay focused on their main priorities – namely growing their businesses and focusing on their customers.
Salesforce Platform security is based on the latest best practices and security technologies. Salesforce works with you so that your users can do their jobs securely and data is exposed only to those users who act on it.
End-to-end control and visibility across the entire value chain.
Security functions are built into the Salesforce Platform:
With Trust comes transparency. Salesforce provides numerous security resources online to help you learn more about platform security, system status, best practices and more.
|Salesforce security online community hub.
|View the service availability and performance of any Salesforce cloud platform.
|Stay Current on Security
|Descriptions of security best practices recommended by Salesforce.
|Security for Administrators
|Links to security information and resources for admins, including documentation, video and training.
|Become a Security Trailblazer
|Salesforce security self-training center.
|Resources for Developers
|Links to security tools and resources for developers who build their own Salesforce apps.
|Security Developer Center
|Resources to help developers learn how to build and secure Salesforce apps.
|All Salesforce security certifications and compliance with standards and regulations.
The world-renowned auditing company Mazars has granted IDW PS 880 certification to the Rootstock Cloud ERP software in the “ERP 21.93” and “Financials 20.127” release. Within the scope of the IDW PS 880 certification, the requirements of the GoBD were checked. This provides certified assurance that the regularity of the relevant functions of the Rootstock Cloud ERP system for the end-to-end processes “Order-to-Cash” and “Purchase-to-Payment”, which span the ERP and Financials modules, as well as the necessary processing functions, in particular with regard to the general ledger and sub-ledger, have been audited. The certification shows auditors in the context of an annual audit that your IT systems Rootstock Cloud ERP in the release “ERP 21.93” and “Financials 20.127” are suitable for this purpose.
The audit of software products by means of the auditing standard PS 880 of the Institute of Public Auditors in Germany (IDW) refers to the determination of compliance, independent of their implementation and going live. In this way, the software provider proves that its part of the responsibility within the framework of the fiscal obligations has been audited and confirmed as positive.
Mazars is a leading international firm specialized in audit, tax and advisory services. Mazars is your global partner for audit, tax and legal as well as accounting, financial advisory and consulting.
Our team in Germany consists of over 1,700 experts in 12 locations. We are the number eight leading audit and consulting firm in Germany. Understanding our clients and their environment forms the basis for our individual advisory approach and our tailor-made services.
With our broad geographical reach and our personal and agile approach, we are a strong partner for both global and local companies. Our clients include private individuals, medium-sized and family-run companies as well as international, regulated companies, but also start-ups and public organizations.
Our goal is always to create the economic foundations for a just and prosperous world by working for the success of our employees and clients, stable financial markets and the integrity of our industry.