Trio of Security and Privacy Audit Reports

Posted by TimeClock Plus on Feb 26, 2019 10:23:41 AM

Privacy Shield Certification                   Enterprise Ready Certification


TimeClock Plus, an enterprise-grade time and attendance solution provider, today announced the results of their System and Organization Controls (SOC) 2 Type II and SOC 3 Audit examination for their TimeClock Plus v7 software hosted in the TCP Cloud.  Additionally, TimeClock Plus announced their third-party assessment for GDPR compliance and their certification as McAfee Cloud Trust Enterprise Ready.  After extensive research, TimeClock Plus contracted the firms of Schellman & Company, Kirkpatrick Price, and Baccam Consulting to perform their external audits.

TimeClock Plus’s SOC 2 Type II audit encompasses the principles of security, confidentiality, and availability. SOC 2 reports are attestations that opine on the controls of a service organization relevant to the security, availability, and, confidentiality of the information being processed for customers. TimeClock Plus’s primary security focus is to safeguard customer and user data. This is the reason TimeClock Plus has continued to invest in the appropriate resources, controls, and independent oversite to protect and service their customers around the world.

Furthermore, as part of their ongoing compliance efforts and commitment to data privacy, TimeClock Plus became a self-certified member of the U.S. Department of Commerce Privacy Shield in September 2018 and completed their third-party GDPR compliance assessment in December 2018. TimeClock Plus’s workforce management solution was reviewed as part of the audit, which confirmed their adherence to GDPR as a processor and controller of HR and non-HR data.

“The completion of these system security and data privacy audits provide TimeClock Plus customers with assurances that securing their sensitive data is the top priority, and we will continue implementing best practices and industry standards to maintain their trust,” said Derek McIntyre, Vice President of Operations.  “It’s also an honor to be included in McAfee’s Cloud Trust Program as an Enterprise Ready cloud solution.”

As the leading CASB, McAfee’s CloudTrust™ Program helps customers lower risk and streamline their vendor evaluation process by providing an objective and comprehensive review of a service’s security controls and enterprise readiness based on a detailed set of criteria developed in conjunction with the Cloud Security Alliance (CSA).

In conclusion, TimeClock Plus remains deeply committed to providing products and services with a high level of organizational dedication to data security and privacy.  If you would like to review their audit reports or other related security and privacy documentation in detail, please visit their resource library at


About TimeClock Plus:

TimeClock Plus is an industry-leading time and attendance solution provider. In time and attendance, accuracy is everything. Anything less can result in problems with payroll, upset employees, ruined credibility, and even wage-and-labor noncompliance penalties. Accurate time and attendance demands technology that ensures compliance and captures every process, rule, and exception. It also requires flexibility and personalization to account for your unique needs. It demands a partner with not only the expertise but also a shared desire to make your entire payroll system work flawlessly — for you and your people. Today, over 60,000 customers in more than a dozen countries trust TimeClock Plus’s software, hardware, services, and support to transform the way they track employee time and attendance.  To find out more visit: 

Topics: Compliance, Cloud Software, Confidentiality, SOC 2, SOC 3, GDPR, Security, Data Privacy