We continually invest in technology to properly and safely house data. Additionally, our teams are routinely trained on our data integrity protocols, and only approved staff members have access to client data.
The HIPAA Security Rule is a national standard set for the protection of consumers’ Electronic Protected Health Information (ePHI). The ePHI that an organization manages must be protected from anticipated breaches by:
HIPAA laws are regulated by the Office of Civil Rights (OCR) and are meant to protect against unauthorized use and disclosure of ePHI.
SOC 2 Type II engagements show our strong commitment to delivering high-quality services to our clients by demonstrating that we have the necessary internal controls and processes in place. SOC 2 Type II engagements are based on the AICPA’s Trust Services Principles:
This process ensures that information security practices, policies, procedures, and operations meet or surpass the rigorous SOC 2 Type II standards.