In relation to SOC reporting, the organization’s system is designed, implemented, and documented by the management of the vendor to provide user entities (you) with the services covered by the auditor’s report and is comprised of the personnel responsible for using and operating the system; the procedures that guide personnel in the delivery of services to clients, processes used to initiate, authorize, record, and process transactions and the associated reporting system, as well as the overall technical infrastructure that supports, and is supported by, the organization’s personnel, procedures, and processes. Components of the technical infrastructure include physical hardware, software, and data as well as the processes that monitor and report on non-transactional events within the system.