SAS70 (Statement on Auditing Standards No. 70) is an internationally recognized auditing standard developed by AICPA (American Institute of Certified Public Accountants). The SAS 70 audit is widely recognized because it represents that a service organization has been through an in-depth audit of their control activities, which generally include controls over information technology and related processes.
 
In today's economy, service organizations or service providers must demonstrate that they have adequate controls and safeguards when they host or process data belonging to their customers.SAS70 provides the guidelines which allow service organizations to disclose their control activities and processes to their customers and their customers' auditors in a uniform reporting format.
 
A SAS 70 examination signifies that a service organization has had its control objectives and control activities examined by an independent accounting and auditing firm. A formal report including the auditor's opinion ("Service Auditor's Report") is issued to the service organization at the conclusion of a SAS 70 examination.