NetDirector, a cloud-based data exchange and integration platform, has once again engaged in the intense process of renewing our SOC 2 ® and HIPAA compliance examinations with the help of international security audit firm, A-LIGN. NetDirector was recently awarded with complete attestations in compliance with HIPAA, HITECH, and SOC 2 Type II standards, the leading security standards in both Healthcare and Mortgage Banking.
Read More: Bitdefender Named A 2021 Gartner Peer Insights Customers’ Choice For Endpoint Protection…
The SOC 2, or System and Organization Controls 2, is an examination under AICPA standards designed for technology service companies to demonstrate controls around data security and processing integrity. The SOC 2 reports are intended to meet the needs of a broad range of users (particularly those in legal, healthcare, and other industries with stringent regulations) that need to understand internal controls at a service organization as it relates to security, availability, process integrity, confidentiality, and privacy. The Type II report is a report on management’s description of a service organization’s system and the suitability of the design and operating effectiveness of controls.
The Health Insurance Portability and Accountability Act, or HIPAA, defines policies and procedures, as well as processes, which are required of companies that store, process, or handle electronic health information that is considered “protected” (ePHI). HIPAA compliance is essential for both technology service providers and integrators like NetDirector, as well as providers, electronic health records systems, billing platforms, and any other entity who might have access to healthcare data even in passing.
The Health Information Technology for Economic and Clinical Health (HITECH) Act was created to promote and expand the adoption of health information technology, specifically, the use of electronic health records (EHRs) by healthcare providers. The HITECH Act also removed loopholes in HIPAA by tightening up the language. This helped to ensure that business associates of HIPAA covered entities were complying with HIPAA Rules and notifications were sent to affected individuals when health information was compromised.
Read More: SalesTechStar Interview with Yair Areli, Senior VP Global…
Both the SOC 2 and the HIPAA audit were performed by Tampa-based global cybersecurity and compliance professional services provider A-LIGN. A-LIGN specializes in helping businesses across a variety of industries navigate the complexities of compliance audits and security assessments, and both the SOC 2 and HIPAA reports of A-LIGN’s findings can be made available to prospective or current customers.
“I am always very proud that our team maintains the processes and attention to detail required for these third-party audits,” said Harry Beisswenger, NetDirector CEO. “The industries that we facilitate data integration for – Mortgage Banking and Healthcare – are two of the most highly regulated environments in terms of data security. Our clients can be sure that at every turn, we are handling their data securely and never cutting corners.”