Sinch, a provider of cloud communications, has achieved third-party validation of its compliance with the Health Insurance Portability and Accountability Act (HIPAA) for its security over voice, fax and UCaaS services. HIPAA accreditation was gained through an in-depth security assessment completed by BDO USA.
Achieving this milestone demonstrates that Sinch’s administrative, physical, and technical safeguards meet the required standards of control and security for its cloud and remote solution infrastructure, network protection, and operational practices.
HIPAA has established regulatory standards governing the security, privacy and integrity of data requiring vendors encountering this sensitive data to be HIPAA-compliant. The goal of an assessment is to evaluate how compliant an entity is with HIPAA rules and regulations protecting customers by keeping their data safe, protecting providers from data breaches to uphold their reputations, and helping providers invest their time and resources most effectively to assure maximum security.
BDO’s process to evaluate firms for HIPAA certification required Sinch experts to host more than a dozen workshops and provide documentation of policies and procedures that attest to HIPAA maturity. The BDO auditors and principals were impressed with Sinch’s process, procedure and documentation, related to handling electronic personal health information (ePHI), and awarded overall rating and individual domain scores among the highest they have issued in past years.