Security at Innovaccer

The security of our customers' data is our number one priority.

HITRUST CSF® Certification

Innovaccer's FHIR-enabled Data Activation Platform has earned Certified status for information security by HITRUST. This achievement places Innovaccer in an elite group of organizations worldwide that have earned this certification.

The HITRUST CSF Certification validates that Innovaccer is committed to meeting key regulations and protecting sensitive information. It demonstrates that our core solution, including the Data Activation Platform and Customer Portal Platform hosted in Amazon Web Services (AWS), has met key regulations and industry-defined requirements and is appropriately managing risk.

Security Operations Best Practices

Innovaccer's FHIR-enabled Data Activation Platform has earned Certified status for information security by HITRUST. This achievement places Innovaccer in an elite group of organizations worldwide that have earned this certification.

Our Approach :

  • Innovaccer’s customer environments are secured by our 24/7 Security Operations Center (SOC) that governs security monitoring and incident management
  • Our Application Security team secures code and patches Innovaccer’s suite of products and solutions.
  • Our Data Security team protects customer data via data governance, data masking, access management, data leak prevention, and other controls.

Platform and Network Security

Innovaccer's security standards and practices are backed by a multi-layered approach for protecting customer data while maintaining confidentiality, integrity, and availability.

DATA STORAGE

Our customer data is securely stored in the cloud within a private subnet, with both our platform and data exclusively hosted in AWS and Azure data centers within the customer's primary region, ensuring that no data is stored outside the country.

ENDPOINT SECURITY

Innovaccer employs a comprehensive endpoint security strategy to protect its devices and data that ensure Innovaccer endpoints are secure from data leaks, malware, and unauthorized access, safeguarding the organization's data and maintaining its integrity.

THIRD-PARTY RISK ASSESSMENTS:

Our proactive vendor screening process is designed to identify information that may impact the ability to commence or continue the relationship prior to potential harm. This includes exclusion screening, conflict of interest checks, and a security risk assessment.

Awarded Top of KLAS for Cyber Security

Rated top of the class in KLAS ratings for Cyber Security, the highest-rated healthcare company in SecurityScoreCard, (Gartner recognized rating mechanism for organizations globally), and highly graded by Qualys SSL Labs and Security Headers.

For security inquiries, contact Innovaccer Enterprise Security

at enterprise-security@innovaccer.com.