Overview

You have canned reports(DBR, Aurea Billing, etc.) that are run out of Aurea for various parts of a particular process at your end. You inquire which Control Objective would cover the canned reports, given these are not specifically called out. 

Information

The annual SOC 1 report, that Aurea's Compliance team provides to you, details the Control Objectives.

It appears that Control 7 (Bill Processing and Printing verify that authorized, complete and accurate bills are printed and sent to energy users) is the control that checks application output like reports and bills.

Certain aspects may also be covered by Control 6 which checks for usage amounts correctness and Control 8 which verifies that bills are being processed completely and accurately.

Control Objective 5 states that control activities provide reasonable assurance that data transmissions between the service organization and its user entities and other outside that affect user entities internal control over financial reporting are from authorized sources and are complete and accurate. The role of Control 5 is defined more at the infrastructure level and is meant to ensure infrastructure integrity and communication security.

If you need more information, please raise a support ticket with us with your exact inquiries. 

<supportagent>

These annual SOC1 report-related queries are requested by the client Stream Energy.

If more information is requested by the client, it is required to reach the compliance team via email at anca.zetea@trilogy.com with the client inquiries.

</supportagent>