PHI/PII data is stored at a SOC2 audited datacenter offsite.
Strict control is maintained over movement of any data:
Access to data is restricted.
Portable devices, such as laptops, flash drives, and phones, are encrypted.
Sensitive data is transferred over secure means, such as an SSL-protected SFTP.
We carry cyber liability insurance.
Employees undergo recurring training in security awareness, including phishing and ransomware tactics.
New hires must pass a background check.