Accreditation Download Center

Policies & Procedures

• BSAAP Policies and Procedures
• Summary of Most Recent P&P Updates
• Accredited Company Code of Conduct
• Statement of Use for BSAAP Logo

BSAAP Standard

• BSAAP Standard: Effective April 6, 2018-Present
• BSAAP Standard: Effective October 14, 2009-April 5, 2018
• BSAAP Standard with Audit Criteria: Effective April 6, 2018-Present
• BSAAP Standard with Audit Criteria: Effective October 14, 2009-April 5, 2018
• Summary of Most Recent Standard Updates

Accreditation Process & Forms

• BSAAP Overview
• Accreditation Process Flowcharts
• Initial & Reaccreditation Letter of Intent Template
• Initial & Reaccreditation Application Packet
• Interim Surveillance Audit Application
• Interim Surveillance Audit Worksheet
• Reaccreditation Clarification
• Timeline for Compliance with Final Standard
• Conformance with BSAAP Standard Letter Template

BSCC

• BSCC Roster
• BSCC Confidentiality Statement

Auditor

• Audit Firm Information
• PBSA - BSAAP - BSCC Confidentiality and Nondisclosure Agreement

Accreditation Tips

Applies to BSAAP Standard, v. 2.0, effective April 6, 2018

• Clause 1.2 - Information Security Policy
• Clause 1.4 - Intrusion and Data Security
• Clause 1.7 - Electronic Access Control
• Clause 2.7 - Prescribed Notices
• Clause 2.9 - Client Legal Responsibilities
• Clause 2.10 - Client Required Documents
• Clause 3.2 - Legal Counsel
• Clause 3.4 - Information Protection
• Clause 4.1 - Public Record Researcher Agreement
• Clause 4.2 - Vetting Requirement
• Clause 4.3 - Public Record Researcher Certification
• Clause 6.11 - Worker Confidentiality, Legal, and Compliance Training
• General - Accreditation Download Center Resource

Opinion Letters

Applies to BSAAP Standard, v. 2.0, effective April 6, 2018

• Clause 1.1 Information Security - PII
• Clause 1.1 Information Security - PII and SOC 2 (Type II) Audit Criteria
• Clause 1.12 - Truncation of SSN & other Sensitive Data Elements
• Clause 1.6 Access Protocol
• Clause 2.8 Agreement from Client
• Clauses 2.18 and 2.14 Automated Reporting Systems
• Clause 4.1 Search Methodology
• Clause 4.1 and 4.3 Clarification
• Clause 4.5 Date of Birth as Personally Identifiable Information
• Clause 4.5 Information Security
• Section 5 Verification Services Standards and Clause 1.1
• Clause 5.3 Accredited Academic Institutions
• Clause 6.1 and Clause 6.2 Background Checks
• Mergers and Acquisitions
• Product Offerings, Vendors, Professionalism/Proficiency
• Remote Workforce
• Reseller-CRA Responsibilities
• Third Party Vendors