Ksana Health Achieves SOC2 Type 2 Compliance for HIPAA and GDPR

Ksana Health completed its first third-party assessment for security and privacy controls, receiving unqualified approval attesting to the strength of our controls and compliance with best practices and statutory requirements, including:

AICPA, Trust Services Criteria
HIPAA Security Rule
HIPAA Privacy Rule
GDPR Controls Mapping

What is SOC 2 Type 2?

A SOC 2 Type 2 report is an internal controls report capturing how a company safeguards data and how well those controls are operating. Companies that use cloud service providers use SOC 2 reports to assess and address the risks associated with third-party technology services. Independent third-party auditors issue these reports covering the Trust Services Criteria including Security, Availability, Integrity, Confidentiality, and Privacy.

AICPA Trust Services Criteria

The SOC 2 examination was conducted according to attestation standards developed and managed by the American Institute of Certified Public Accountants (AICPA), and provides detailed information related to, and assurance of, an entity’s controls surrounding the security, availability, and processing integrity of the systems used to process users’ data and the confidentiality of the data processed by these systems.

HIPAA Security & Privacy Rules

The controls embodied in the Healthcare Insurance Portability and Accountability Act (HIPAA) Security Rule and Privacy Rule, as defined in United States federal regulations 45 C.F.R. § 160 to 164, were evaluated and deemed compliant with the statute. Ksana Health is ready to act as a trusted Business Associate as we work together to improve health equity and mental health outcomes.

GDPR Controls Mapping

Ksana Health’s privacy controls were mapped to the European Union’s General Data Protection Regulation and were approved as meeting this standard.

Our Commitment to Security and Privacy

As part of our ongoing commitment to providing a best-in-class cloud network service, we take security and privacy seriously. Ksana Health was able to implement the required SOC 2 guidelines in an extremely short time frame due to the company’s advanced IT infrastructure and the modern architecture used in our EARS and Vira platforms.

“Ksana Health is proud to meet the highest standards with our approach to security and privacy, which is critical so that we can be a trusted partner for our customers,” said Dr. Nick Allen, CEO & Co-Founder, of Ksana Health. “Our clients need comprehensive assurances including confidence in the security, availability, processing integrity, confidentiality, and privacy of their data and the way they are stored and managed.”

Ksana Health customers, prospects, and partners may receive a copy of the SOC 2 report upon request. For more information on Ksana Health and the Vira and EARS products, please visit www.ksanahealth.com/privacy-policy/ or email privacy@ksanahealth.com

Elizabeth Duncan

2 September 2022

Recent Articles

Ksana Health 2022 Highlights (in Video)

For Ksana Health, 2022 was a year of perseverance, learning and optimization. We are grateful to all the partners, collaborators and supporters who made the year what it was. The video below...

Study Result: The TAG Study (McNeilly, 2023) further confirms link between teen mood and social media communications.

We are glad to share this recent publication of the Transitions in Adolescent Girls (TAG) Study (McNeilly, 2023), a longitudinal study examining the extent to which daily mood is associated with digital...

The Health Economics Case for Continuous Behavioral Health Measurement

Like any new health technology, continuous behavioral health measurement (CBHM) must economically justify its place among the growing options for measuring therapy and care outcomes. At Ksana Health, we think a lot...

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Performance

Analytics

Others