Security and Compliance: SOC2 Type2, HIPAA, PCI-DSS

What is the SOC2 Type2 report?

The SOC2 framework is intended to deliver a report specifically designed for data centers, service providers and other technology companies. Its Trust Service Principles apply to security, availability, processing integrity, confidentiality, and privacy.

Type 2 reports on the design and operating effectiveness of the service organization's controls. The Type2 report indicates that the organization has undergone an audit during a pre-determined period.

The SOC2 Type 2 report is available for private viewing by our existing customers and their auditors. Viewing of this document must be done at our 800SQ offices as it is a confidential document, intended for a restricted audience.

HIPAA

Netelligent also has a SOC2 to HIPAA mapping report that can be viewed at the same time as the SOC2 Type2 report. This document and table is to assist in the mapping of the Trust Services Principles, Criteria, and Illustrations for Security and Availability to the United States Heath Information Portability and Accountability Act (HIPAA).

What about PCI DSS?

In addition to the above, we also comply with sections 9 and 12 (concerning physical premises) of the PCI DSS certification. We continue to work with PCI auditors for several of our existing customers to assist them in successfully passing their PCI DSS audits.