
Certifications & Affiliations
Certifications: Access takes a principled approach to our security and privacy practices
We continue to demonstrate a deep commitment by maintaining industry certifications and affiliations, while adhering to regulatory standard frameworks.
Select a program below to learn more.
Contract Security Program (CSP)
The Government of Canada’s Contract Security Program (CSP) is designed to safeguard protected, classified, and other sensitive government information as well as foreign information and assets when entrusted to external parties.
The CSP provides security screening of organizations and their personnel for solicitations and contracts with security requirements. Access Information Management Canada, ULC maintains Contract Security Program Certification status across our Canadian locations.
Controlled Goods Program
The Controlled Goods Certification Program plays a vital role in ensuring compliance with the examination, possession or transfer of information that is controlled domestically by the Federal Government of Canada.
The Certification Program validates standards through security planning, personnel security assessments and onsite audits conducted by the Public Services and Procurement Canada. Access Information Management Canada, ULC maintains Controlled Goods Program Certification status across our Canadian locations.
Data Privacy Framework
The EU-U.S. Data Privacy Framework (DPF), UK Extension to the EU-U.S. DPF, and Swiss-U.S. DPF requires that companies meet obligations to protect personal data. Now, more than ever, companies need guidance to ensure compliance with privacy requirements.
The assessment guides discovery of necessary information, including relevant data flows and evaluation of privacy policies and practices against relevant standards. Access partners with a 3rd party service provider to validate that our privacy program, policies, and practices meet the required framework principles.
NAID
When organizations require secure destruction of hard copy records, electronic media and computer hard drives they can rely on Access’ NAID AAA Certified locations.
NAID certification is overseen by The International Secure Information Governance & Management AssociationTM (i-SIGMA®), the industry trade association for secure data destruction and records & information management service providers. i-SIGMA enforces standards and ethical compliance for approximately 2,500 service providers on six continents and currently maintains the most rigorous and widely accepted data-security vendor-compliance certifications, NAID AAA Certification® and PRISM Privacy+ Certification®.
NARA
The National Archives and Records Administration (NARA) is the nation’s record keeper. U.S. federal agencies or entities must certify to NARA that a commercial records storage facility meets the 36 CFR 1234 standards and secure NARA approval for its use before storing their records. If a federal agency has placed records in a commercial records storage facility, and that agency or entity has not secured NARA approval, the agencies or entities must go through the approval process.
Access has NARA approved facilities strategically located throughout the United States and continues to assess additional facilities for conformity to NARA approved security and compliance standards in response to requests from federal agencies.
PCI-DSS
PCI DSS (Payment Card Industry Data Security Standard) provides technical and operational requirements that are designed to protect cardholder data. The requirements were designed to decrease credit card fraud by increasing the controls involved with cardholder data. PCI DSS acts as a framework for a Merchant or Service Provider to develop a strong payment card data security process, which includes prevention, detection, and reaction to security circumstances.
Access maintains PCI DSS v4.0 attestation of compliance for the physical storage of records using standardized security measures.
PRISM Privacy+
PRISM Privacy+ Certification® is a voluntary i-SIGMA program that allows records and information management members to demonstrate a commitment to ensuring the privacy of information. Service providers must meet the necessary specifications and pass ongoing audit regimes to ensure they are consistently complying with all necessary deliverables and regulations. This certification meets clients’ regulatory due diligence requirements.
Access continues to maintain the Privacy+ certification demonstrating our commitment to information privacy standards. Additionally, Access is a corporate member of PRISM International with team members serving in various leadership positions.
SOC 2 Type II
SOC (System and Organization Controls) is the de facto standard for technology service providers to demonstrate the successful design and operation of their internal controls. A SOC-certified organization has been audited by an independent certified public accountant who determined the organization has the appropriate safeguards and procedures in place to adequately protect sensitive data.
Access Unify, FileBRIDGE, and CartaHR platforms are assessed by an independent auditing firm in accordance with attestation standards established by the American Institute of Certified Public Accountants (AICPA) and in accordance with International Standard on Assurance Engagements (ISAE) 3000 (Revised), Assurance Engagements Other Than Audits or Reviews of Historical Financial Information, issued by the International Auditing and Assurance Standards Board (IAASB). The SOC2 Type II report assures clients that Access has proven its processes, facilities, and systems meet the required industry control standards.
SOC 3
SOC (System and Organization Controls) is the de facto standard for technology service providers to demonstrate the successful design and operation of their internal controls. A SOC-certified organization has been audited by an independent certified public accountant who determined the organization has the appropriate safeguards and procedures in place to adequately protect sensitive data.
Access Unify was assessed by an independent auditing firm in accordance with attestation standards established by the American Institute of Certified Public Accountants (AICPA). The SOC3 report assures clients that Access has proven its processes, facilities, and systems meet the required industry control standards under the trust service criteria for security, availability, and confidentiality.
Association for Intelligent Information Management (AIIM)
AIIM is a nonprofit organization focused on helping users to understand the challenges associated with managing documents, content, records, and business processes. Founded in 1943, AIIM is also known as the enterprise content management (ECM) association. Access is a strong supporter of the annual AIIM educational conference. In addition, several Access team members hold leadership positions in local AIIM Chapters.
Association of Legal Administrators (ALA)
ALA is the Association of Legal Administrators. Founded in 1971, the organization is dedicated to providing support to professionals involved in the management of law firms, corporate legal departments and governmental legal agencies. As a supporter of ALA, Access participates in local and national ALA events.
ARMA International
For more than 50 years, ARMA International has been regarded as the leading not-for-profit professional association and the authority on managing records and information – paper and electronic. Access is a proud corporate member and annual sponsor of the ARMA International Educational conference.
In 2013, the Access Leadership Scholars Endowment was created and is administered by the ARMA IEF. Additionally, several Access team members hold leadership positions in ARMA chapters throughout the U.S.
International Association of Privacy Professionals (IAPP)
The International Association of Privacy Professionals (IAPP) is the largest and most comprehensive global information privacy community and resource. Founded in 2000, the IAPP is a not-for-profit organization that helps define, support and improve the privacy profession globally. Access is proud to be a Silver Member of IAPP.
International Facility Management Association (IFMA)
The International Facility Management Association is the world’s largest and most widely recognized international association for professional facility managers, supporting more than 19,500 members in 60 countries. The association’s members, represented in 125 chapters and 16 councils worldwide, manage more than 37 billion square feet of property and annually purchase more than US$100 billion in products and services.
Information is your most valuable asset. It’s our passion.
Are you ready to take control of your information lifecycle? We manage documents for over 30,000 companies in North America. Let us help you manage yours.