Information Security with NIST 800-53, SOC 2 Type II and HIPAA Compliance
Axion Health solutions are stored in the cloud, taking advantage of the infinitely scalable SaaS (software as a service) architecture. The data storage facility is compliant with all security rules and policies established by HIPAA1 and NIST 800-532 standards. In addition, Axion Health employs an Information Security Program that further safeguards customer information.
ReadySet also complies with all SOC 2 Type II3 standards for internal controls related to security, availability, confidentiality, processing integrity and privacy. This ensures the system is protected against unauthorized physical and logical access.
Axion Health uses an Oracle 11g database, which is the same database used by the top 10 global banks.
1. HIPAA: The Health Insurance Portability and Accountability Act of 1996
2. NIST 800-53: National Institute of Standards and Technology Special Publication 800-53, "Security and Privacy Controls for Federal Information Systems and Organizations."
3. SOC 2 Type II: "Report on Controls at a Service Organization Relevant to Security, Availability, Processing Integrity, Confidentiality or Privacy," AICPA, http://www.aicpa.org