By Joe Gargiulo
July 16, 2017

Optio Solutions Focuses on Data Security and Compliance

Petaluma, Calif. (July 16, 2017) — Optio Solutions, a national debt collection agency, has completed its annual PCI and SOC 1 Type II audit by KirkpatrickPrice. The 2017 reports verify that Optio adheres to the Payment Card Industry Data Security Standard, and has the proper internal controls and processes in place to deliver best-in-class services to all clients.

A licensed CPA and PCI QSA firm, KirkpatrickPrice performed the audit and appropriate testing of Optio Solutions’ controls that are relevant to the storing and transmitting of information from credit, debit or other payment cards. In accordance with the PCI Security Standards Council, KirkpatrickPrice’s Qualified Security Assessors assisted Optio Solutions in becoming PCI compliant.

“The annual PCI DSS and SOC 1 Type II audit underlines our commitment to protecting clients’ brands with a high level of data security,” said Optio Solutions President and CEO Chris Schumacher.

Data Security Standards

data securityThe PCI Data Security Standard is a complex security standard that focuses on security management, policies and procedures, network architecture, software design, and other critical protective procedures.  These security standards are relevant to any merchant or service provider that uses, stores, or transmits information from a payment card.

“The clients of Optio Solutions rely on its systems to process and store sensitive data while protecting information,” said Managing Partner Joseph Kirkpatrick of KirkpatrickPrice. “Consequently, Optio has implemented best practice controls required by their customers to address information security and compliance risks.”

KirkpatrickPrice also performed the audit and appropriate testing of Optio’s controls that may affect its clients’ financial statements. In accordance with SSAE 18 (Statements on Standards for Attestation Engagements), the SOC 1 Type II audit report includes Optio’s controls as well as the detailed testing of its controls over a minimum six-month period.

SOC 1 Type II is a reporting on the controls at a service organization that was established by the American Institute of Certified Public Accountants (AICPA). This report is in compliance with the SSAE 18 auditing standards which focus on the controls of a service organization that are relevant to an audit of a user entity’s financial statements. The standard demonstrates that an organization has adequate controls and processes in place.

About Optio Solutions, LLC

Optio Solutions, LLC is a national debt collection agency focused on protecting its clients’ brands and improving ROI via extensive financial services experience, advanced technology, certified data security, legal compliance and professionally designated staff. Optio is a member of ACA International and the California Association of Collectors.

About KirkpatrickPrice, LLC

KirkpatrickPrice is a licensed CPA firm, PCI QSA, and a HITRUST CSF Assessor, registered with the PCAOB, providing assurance services to over 550 clients in more than 48 states, Canada, Asia, and Europe. The firm has over 12 years of experience in information security and compliance assurance by performing assessments, audits, and tests that strengthen information security and internal controls. KirkpatrickPrice most commonly provides advice on SOC 1, SOC 2, HIPAA, HITRUST CSF, PCI DSS, ISO 27001, FISMA, and CFPB frameworks. For more info, visit, follow KirkpatrickPrice on Twitter (@KPAudit), or connect with KirkpatrickPrice on LinkedIn.



Andrew Donahey
Optio Solutions
707-665-2100 ext. 9503

Share on:

More news