SSAE 16 SOC 1 Type 2 Compliant Data Centers

IO has received an unqualified (“clean”) opinion on our 2012 Statement on Standards for Attestation Engagements No. 16 (SSAE 16) SOC 1 (Service Organization Controls) Type 2 report of our data center services. This means that our system of internal controls in place for our data center services was properly documented and our controls were properly designed, in place, and operating effectively during the period October 1, 2011 through September 30, 2012.

This year’s SSAE 16 audit was conducted by Deloitte and Touche LLP for IO Phoenix, IO Scottsdale and IO New Jersey and addressed the controls placed in operation and tests of operating effectiveness within the following areas:

Human Resources

Data center operations, IT, and customer support departments are staffed with appropriately skilled and experienced personnel and all personnel receive appropriate training as necessary

Physical Security

The physical access to IO facilities is limited to properly authorized individuals

Facility and Environmental Protection

IO facilities housing customer equipment and support operations are engineered and monitored to reduce the risk of environmental threats

Client Account Management

New installations and changes to customer equipment at IO are fulfilled according to the customer’s specifications per the contractual agreement

Logical Security

Network devices and critical systems are configured with appropriate security

Operations

All critical network systems are backed-up where appropriate and are recoverable

As an IO customer, you can be assured that your IT operation will remain “always-on” 24x7xForever.