The following are the certifications and compliances we have received in order to secure customer data.
ISO 27001 is the most internationally recognized standard for information security management. ISO 27001 provides a framework of policies and procedures that includes all legal, physical, and operational controls involved in an organization’s security risk management processes.
SOC 2 is a compliance standard that includes commitments to security, availability and availability. These information security policies deﬁne an organization-wide approach to how systems and data are protected. These include policies around how the service is designed and developed, how the system is operated, how the internal business systems and networks are managed, and how employees are hired and trained.
The Health Insurance Portability and Accountability Act (HIPAA) is a federal act that defines the standards to protect sensitive patient health information (PHI). It mandates industry-wide standards for health care information on electronic billing and other processes, and the protection and confidential handling of protected health information.
The General Data Protection Regulation (GDPR) is a set of regulations applied to the European Union nations and defines a set of principles to ensure the security and privacy of and during the processing of personal data.