Four Considerations about Cloud ECM
In our previous blog post, we talked about the criteria to help you find the best ECM solution. While some companies may still want their ECM on their own servers, the fact is that most companies today are relying on Cloud Solutions. Here are the additional criteria that you must consider for Cloud ECM:
- Uncompromised Security
Security is the first priority when it comes to Cloud ECM. Make sure the solution you choose has a myriad of physical and technical security measures at the data center. Also, ask about their network security to make sure that your data is never exposed to externally accessed systems and potential attackers. The best systems provide data encryption both during transmission and when stored. Also, ask how the control information access. The solution should have ECM system monitoring including daily network vulnerability testing by an independent third party.
- The Strongest Product Reliability
A reliable Cloud ECM solution is one that is scalable and easily expands for more use. As a customer, you should be assured that your data will never be lost. There should be no single point of failure – in other words, storage system failures should be able to occur without data loss or service interruptions. Ask about the scalability of their data storage, and their data restoration systems. The best solutions have a redundant storage system or multiple data centers that act as backup for the primary system. Don’t forget about disaster recovery capabilities. The vendor you choose should be able to provide a secure backup copy of your online data.
- Guaranteed Availability
When the solution includes a reliable Cloud ECM system and infrastructure as defined above, the vendor can easily guarantee the availability of the service. The best vendors provide a 99.9% uptime guarantee and even give you your money back if they don’t keep their promise.
- SSAE16 Auditing
SSAE16 is the American Institute of Certified Public Accountants Statement on Standards for Attestation Engagements 16 audit. It is the authoritative guidance that allows service organizations, such as cloud computing providers to disclose their control activities and processes to their customers and their customers’ auditors in a uniform reporting format. The SSAE16 report includes comprehensive reviews and tests of general computer controls. Federal regulations such as Sarbanes-Oxley, Gramm-Leach-Bliley and the Health Insurance Portability and Accountability Act (HIPAA) require corporations to audit the internal controls of their suppliers, including those providing cloud services.
The demand for ECM, and its acceptance by various organizations as a bona fide way to do business, is strong because it helps companies do more with fewer resources and a smaller ecological footprint. Now is the perfect time for your company to learn more about ECM and how it can improve your business model.