Compliance

Secure MFA/2FA Authentication

  • We follow security best practices, such as multi-factor authentication (MFA), Two Factor Authentication (2FA), and robust password protection

Data Security & Encryption

  • Only a limited number of core team members have access to production keys based on a “need to know” policy for problem resolution and account setup.
  • All data is stored in Amazon S3 and Wasabi storage using advanced AES-256 bit encryption Transmitted data is encrypted and secured using TLS 1.2 with 2048-bit certificates.
  • Our servers are strongly secured, hardened and include the latest security patches

Data Retention

  • Customer chooses their retention length based on their corporate requirements.
  • Customer data is deleted when they cancel their subscription. The customer can have us retain their data for as long as necessary, but it will require them to pay for the data portion of their subscription.
  • databkup with any personal data, please contact us directly by filling out the form in the contact page.

HIPAA Compliance

  • All staff are HIPAA Awareness Certified 
  • All staff are HIPAA Security Certified 
  • All data centers are HIPAA Compliant 
  • All cloud storage providers are HIPAA Compliant 

Payment Processor

  • PCI DSS SAQ A Compliant - this means that we do not directly store card information and are PCI Compliant for web transactions only.
  • GDPR (General Data Protection Regulations)

Data Centers

  • SSAE-16 SOC 1 Type 2 Certified 
  • SSAE-16 SOC 2 Type 2 Certified 
  • ISAE (International Standard on Assurance Engagements) 3402 Compliant 
  • HIPAA (Health Insurance Portability and Accountability Act) Compliant 
  • PCI (Payment Card Industry Data Security Standard) Compliant 
  • Los Angeles Learn More 
  • Dallas Learn More 
  • Tampa Learn More 

Storage Providers

Amazon S3

  • Amazon S3 is deployed in top tier data centers certified for SOC 1, 2, and 3
  • ISO/IEC 27001:2013 Information Security Management System
  • ISO/IEC 27017:2015 Code of Practice for Information Security Controls
  • ISO/IEC 27018:2019 Code of Protecting Personal Data in the Cloud
  • GDPR (General Data Protection Regulations)
  • HIPAA (Health Insurance Portability & Accountability Act)
  • CJIS (Criminal Justice Information Services)
  • FERPA (Family Educational Rights and Privacy Act)
  • MPAA (Motion Picture Association of America)
    Learn More

Wasabi

  • Wasabi is deployed in top tier data centers certified for SOC 2
  • ISO/IEC 27001:2013 Information Security Management System
  • GDPR (General Data Protection Regulations
  • HIPAA (Health Insurance Portability & Accountability Act)
  • CJIS (Criminal Justice Information Services)
  • FERPA (Family Educational Rights and Privacy Act)
  • MPAA (Motion Picture Association of America)
    Learn More