Your trust is our highest priority, and our data integrity and security processes undergo annual reviews and audits to ensure we meet and exceed compliance for HIPAA and SOC 2 Type II.

We continually invest in technology to properly and safely house data. Additionally, our teams are routinely trained on our data integrity protocols, and only approved staff members have access to client data.

The HIPAA Security Rule is a national standard set for the protection of consumers’ Electronic Protected Health Information (ePHI). The ePHI that an organization manages must be protected from anticipated breaches by:

•  Mandating a Risk Assessment
•  Implement Physical Safeguards
•  Implement Administrative Safeguards
•  Implement Technical Safeguards

HIPAA laws are regulated by the Office of Civil Rights (OCR) and are meant to protect against unauthorized use and disclosure of ePHI.

SOC 2 Type II engagements show our strong commitment to delivering high-quality services to our clients by demonstrating that we have the necessary internal controls and processes in place. SOC 2 Type II engagements are based on the AICPA’s Trust Services Principles:

•  Security
•  Availability
•  Confidentiality
•  Privacy
•  Processing Integrity

This process ensures that information security practices, policies, procedures, and operations meet or surpass the rigorous SOC 2 Type II standards.