A North American financial institution wanted to collect and store evidence of IT control effectiveness in a way that provided rapid access for review and that protected sensitive information. Its solution linked IT compliance test results with corresponding evidence while encrypting for privacy and hashing for integrity. These efforts reduced the costs associated with testing IT controls by approximately 65%.