Bluelock Achieves SOC 2 Certification for Ninth Consecutive Year

DRaaS provider passes third-party SOC 2 audit without exceptions

INDIANAPOLIS–January, 16 2018–Bluelock, provider of Disaster Recovery-as-a-Service (DRaaS) and Infrastructure-as-a-Service (IaaS) for complex environments and sensitive data, is pleased to announce it has successfully completed the Service Organization Control (SOC) 2 Type II certification for its managed cloud hosting and recovery solutions for the ninth consecutive year. This comprehensive audit and certification conducted by a third party auditor verifies Bluelock’s operational policies, controls and service delivery for having strong security protocols.

Additionally, Bluelock’s service controls were reviewed for alignment with HIPAA requirements and were found to comply with industry accepted security, availability and confidentiality best practices. An addendum in Bluelock’s SOC 2 report is provided to offer third-party validation of the ways Bluelock supports HIPAA regulatory requirements.

“Our clients rely on us to deliver secure and reliable ITSM-based cloud services,” said Bluelock CEO Christopher Clapp. “Receiving this validation assures our clients that their IT systems are being securely managed and protected by an established vendor who has implemented strong data privacy and security as a fundamental way of doing business.”

Bluelock maintains a high bar for security and availability for its cloud services and has architected its solutions and tools to enable clients to build cloud environments that meet a variety of compliance frameworks, including HIPAA, PCI-DSS and GDPR. As a cloud service provider, Bluelock is verified for being able to execute on its own and shared responsibilities for protecting data in alignment with the client’s responsibilities for maintaining their own data security.

Bluelock is also compliant with the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks. For more information on Bluelock and its services, visit

About Bluelock

Bluelock provides Disaster Recovery-as-a-Service for complex environments and sensitive data to help companies mitigate risk with confidence. Bluelock is the provider enterprise organizations turn to for highly resilient cloud services because of its ability to support unique requirements. Its exclusive program, Bluelock Recovery Assurance™ gives clients complete confidence their disaster recovery solution will be uncompromisingly secure, expertly tailored, thoroughly supported and comprehensively tested. With data centers in the US, Bluelock supports a wide range of compliance frameworks and is SOC 2 Type II audited. For more information, visit