BG5.jpg
 
• Kaye-Smith To Become FSC Certified February 2008
Kaye-Smith has applied for Forest Stewardship Council (FSC) Chain-of-Custody (CoC) Certification. This certification provides a system for tracking certified wood from the forest through each stage of production and distribution to the point of sale. CoC certification provides assurance to our customers and to the public that the paper products bearing the FSC label was produced from a certified “well-managed” forest. Some benefits you can expect from this FSC certification include:

• Kaye-Smith will further distinguish itself in the marketplace for supporting responsible forestry.
• It allows us access to markets requiring FSC certification.
• It allows us to use the Rainforest Alliance Certified™ seal and FSC trademarks on certified products and promotional material.
• Kaye-Smith will appear on a list of certified companies.

Kaye-Smith continues to find ways to help improve the environment in which we live.
top.gif
• ISO 27001 - Information Security Management September 2007
ISO 27001:2005 from the International Organization for Standardization is the formal standard used for certifying Information Security Management Systems. Its purpose is to serve as the foundation for third party information security audits. It is process oriented. To achieve certification, an organization’s Information Security Management System must be audited by an assessor who works for a certification body that is accredited by the National Accreditation Organization for our relevant geography. It attests that an organization is substantially compliant with security standards.

Kaye-Smith has earned ISO 27001 Certification

Here are some of the benefits ISO 27001 brings to Kaye-Smith:
• It serves as a valuable framework for resolving security issues
• It enhances client confidence and perception  of Kaye-Smith
• It enhances our subcontractors and vendors confidence and perception of Kaye-Smith
• It provides confidence that we have managed risk in our own security implementation
• It enhances security awareness within Kaye-Smith
• It assists in the development of best practice
• It improves time management, accountability, and efficiency
• It insures against major failure and ensures Business Continuity

How is ISO 27001 and SAS 70 different? Some might say that having SAS 70 is the way to avoid having every Kaye-Smith managed security service client perform its own audit of Kaye- Smith. SAS 70 is NOT recommended for security purposes. It isn’t actually a measure of security; it’s a measure of financial controls.

The Sarbanes Oxley Act (SOX) requires that companies verify the accuracy of their financial statements and establishes SAS 70 Type 2 audits as a way to verify that third-party providers meet those needs. A SAS 70 audit does not rate a company’s security controls against a particular set of defined best practices. ISO 27001 does exactly that. ISO 27001 forces us to assess our security risks and rectify them on an ongoing basis as measured against a set of prescribed standards supported by written policies and procedures. Kaye-Smith has taken the steps to become ISO Certified so that we can continue to grow our business in a marketplace that wants to outsource, but only if a secure environment can be proven. Kaye-Smith is that Document Solutions Outsource provider.
top.gif
• Financial Institutions are Utilizing Kaye-Smith Services A
The Financial Services industry is learning about the benefits of working with Kaye- Smith. Banks, credit unions, and insurance companies have become a significant part of Kaye-Smith’s client base for good reason. Kaye-Smith is a very secure organization, providing all the safeguards legally required for financial data exchange. We have achieved both the SAS 70 Type 2 Audit Report and ISO 27001 Certification for Information Security Management. Kaye-Smith has a very experienced Data Management and Mail Services department who have specialized in working with financial market organizations for years. All services from sales, to form design, manufacture and warehousing, to data management, laser imaging, letter shop services and fulfillment are all conducted within the same Kaye-Smith facilities. This insures the safeguards required are seriously controlled and that the timing of the jobs is the specific responsibility of Kaye-Smith.

From a sales perspective the time required to develop a financial services client can be quite long. However, our experience in this market coupled with a good reputation with existing clientele makes Kaye-Smith a very attractive solution. Our relationships within this market becomes extremely deep as we become an extension of their operations.
top.gif
• Kaye-Smith has SAS-70 Review July 2007
Kaye-Smith has successfully completed and obtained both SAS 70 Type I and Type II Reviews.

The SAS 70 Review is a report designed to provide information and assurance about controls within Kaye-Smith to our customers and their auditors.

The benefits of a SAS 70 Review include:
• Satisfying customer Sarbanes-Oxley 404 requirements
• Satisfying customer audit requirements
• Compliance with other regulatory requirements
• Satisfying contract requirements
• Documentation and testing of the internal control structure
• Streamlining business processes and controls
top.gif
• Kaye-Smith Acquires Olympic Data January 2007
Kaye-Smith has purchased Olympic Data Services, Inc., effective December of 2006. Kaye-Smith is eager to welcome the talented staff of this respected company into our family. Started in 1977, Olympic Data Services added mailing services in 1992, becoming a full service provider. Specializing in statement processing and printing, Olympic Data will blend perfectly into Kaye-Smith’s extensive offerings.
top.gif
• Kaye-Smith and Security October 2006
In the last 10 years significant information security legislation has been passed affecting every
American. Here are a few that you may recall:

• Homeland Security Act of 2002
• USA Patriot Act of 2001
• Intelligence Authorization Act of 2002
• Federal Information Security Management Act of 2002
• Bank Secrecy Act
• Check Clearing for the 21st Century Act
• Electronic Funds Transfer Act
• Expedited Funds Availability Act
• Federal Reserve Act
• Gramm-Leach-Bliley Act (GLBA)
• Home Owner’s Loan Act
• Sarbanes-Oxley Act of 2002 (SOX)
• Bank Service Company Act
• Fraud and Related Activity in Connection with Computers
• Bank Protections Act
• Health Insurance Portability and Accountability Act of 1996 (HIPAA)

With the customers we serve at Kaye-Smith, HIPAA, GLBA, and SOX, along with their related security and privacy safeguards, are laws we have to deal with on a daily basis for purposes of security.
We have also had to make some adjustments and be aware of the changes brought about by the Check Clearing for the 21st Century Act. Since these legislative acts play such an important role in how our clients are doing business, it is important that we understand what they are and what they mean.

HIPAA – The HIPAA Security Standards Rule, which went into effect in April 2005, requires health-care covered entities to maintain administrative, technical, and physical safeguards to ensure the confidentiality, integrity, and availability of electronic health information. It requires protection against any reasonably anticipated threats or hazards to the security or integrity of such information; and to protect against any unauthorized uses or disclosures of such information.

GLBA – Gramm-Leach-Bliley requires financial institutions to have an information security plan that contains administrative, technical, and physical safeguards to protect the security, confidentiality, and integrity of personal consumer information. Covered entities are required to implement information security programs to ensure the security and confidentiality of customer information, protect against anticipated threats or hazards to the security or integrity of such information, and protect against unauthorized access to or use of such information that could result in substantial harm or inconvenience to any customer.

SOX – Sarbanes-Oxley authorizes the Security Exchange Commission to prescribe regulations requiring entities that produce annual financial reports to contain a report on the firm’s internal financial controls. Section 404 of this Act specifies what those controls must be.

Check 21 – as Check Clearing for the 21st Century Act is often called, is designed to foster innovation in the payments system and to enhance its efficiency by reducing some of the legal impediments to check truncation. The law facilitates check truncation by creating a new negotiable instrument called a substitute check, which permits banks to truncate original checks, to process check information electronically, and to deliver substitute checks to banks that want to continue receiving paper checks. A substitute check is the legal equivalent of the original check and includes all the information contained on the original check. The law does not require banks to accept checks in electronic form nor does it require banks to use the new authority granted by the Act to create substitute checks. For purposes of character recognition and legal recognition (CAR/LAR) this Act does affect how checks are designed for those participating entities.
top.gif
BG_HorzBar.jpg
© Copyright Kaye-Smith 2008. All rights reserved.
home | about us | contact us | current news | site map
print management | financial communications | direct market
CURRENT NEWS
CURRENT NEWS
ABOUT US
ABOUT US
HOME
HOME
CONTACT US
CONTACT US
SITE MAP
SITE MAP
LOGIN
LOGIN