Salesforce Best Practices for IT Compliance and SOX: The S arbanes OX ley Compliance was passed by US Congress in 2002 in order to regulate financial reporting standards for publicly listed companies their boards and accounting firms. As many companies use Salesforce to generate financial reports and so many salesforce teams are interested in ensuring they are on the right side of the law by getting SOX Compliance. It's a really big deal since non-compliance can carry a penalty up to $1M and ten years in prison for corporates even in circumstances where they filed reports incorrectly by mistake. For Salesforce developers, Admins, IT Managers SOX Compliance for Salesforce means that they need to take care of the following 3 things: Access Management for Auditability Separation of Duties Integrity of Data Let's first understand what is Auditability. Auditability is leveraging audit trial feature in Salesforce to monitory activity performed by Salesforce Administrators , includ