Data Security

You can be sure your data is being protected with maximum security. Credit Control is PCI Level 2 compliant and our database employs data encryption at rest. We have passed the most stringent of security audits, and network scans are performed on a quarterly basis.



The SOC 1 reports on the suitability of the design and operating effectiveness of the organization’s internal controls over financial reporting for purposes of complying with laws and regulations, such as the Sarbanes-Oxley Act, and the auditors as they plan and perform audits of the financial statements. The standards are put in place by the AICPA.


ISO 27001

ISO 27001 is the formal set of specifications against which organizations may seek independent certification of their Information Security Management System (ISMS). ISO 27001 specifies requirements for the establishment, implementation, monitoring and review, maintenance and improvement of a documented information security management system within the context of an organization’s overall business and information security risks.



Compliance, ethical responsibility, and accountability are built into the culture at Credit Control. We are fully licensed and bonded, allowing us to provide collection services in all 50 states, as well as Puerto Rico and Guam.

Credit Control is HIPAA compliant, PCI Level 2 compliant, and staff are monitored to ensure full compliance with client work standards, as well as all federal, state and local laws and regulations.