Overview
Western Mailing Limited & Western Mailing Wellington Limited (“Western Mailing”) maintains a security and compliance program designed to support the confidentiality, integrity, and availability of systems used to deliver its services.
SOC 2 Type II Assurance
Western Mailing has successfully completed a SOC 2 Type II examination with an unqualified opinion, demonstrating that our controls were suitably designed and operated effectively over the entire review period. The examination was conducted in accordance with the Trust Services Criteria (Security, Availability, and Privacy) established by the American Institute of Certified Public Accountants (AICPA), and performed by an independent, licensed audit firm.
An unqualified opinion confirms that:
Control Environment
We have implemented policies, procedures, and technical measures intended to address security risks relevant to our services. These measures include, but are not limited to:
Availability
We maintain controls to support the availability of our systems and services. These include proactive system monitoring, incident response procedures, and operational processes designed to minimise disruption and support service continuity.
Risk Management and Monitoring
We maintain processes to identify and assess risks that could impact system security. Management monitors the effectiveness of controls and adjusts, as appropriate, in response to changes in the operating environment, identified risks, or business requirements.
Report Use and Distribution
Due to the sensitive nature of SOC 2 Type II reports, full reports are only shared with customers and partners who have a contractual agreement in place that includes provisions permitting such disclosure. This approach aligns with industry best practices and helps protect both our company and our customers.
Contact
For security-related inquiries, please contact our customer service team in the first instance: customerservice@wm.co.nz
