Skip navigation

Mendix Attains ISAE 3402 Type II Certification for Internal Controls

Enterprise Application Platform as a Service Provider Completes Rigorous Independent Audit

BOSTON November 13, 2014Mendix, the enterprise app platform as a service (aPaaS) company, today announced that it has achieved International Standard on Assurance Engagements (ISAE) 3402 Type II certification. This certification was the result of an extensive independent audit and confirms that the delivery of operations and IT services for Mendix customers and partners adheres to the stringent level of security and controls outlined by the ISAE 3402 standard.

“As more and more enterprises move to the cloud, they expect the highest level of security, integrity and confidentiality with respect to their apps and data,” said Derek Roos, CEO and co-founder of Mendix. “This designation reflects the diligence and quality Mendix dedicates itself to in every aspect of our operations – from the features in our public-facing app platform to the rigorous controls we apply to our own internal processes.”

ISAE 3402 is a global assurance standard for reporting on controls at a service organization. It was developed to provide a standard that auditors can use to ensure the integrity of an organization’s internal controls. ISAE 3402 was put forth by the International Auditing and Assurance Standards Board (IAASB), a standard-setting board within the International Federation of Accountants (IFAC).

The ISAE 3402 Type II certification has been provided by an independent audit firm and builds on last year’s Type I level of certification. Further details can be found at