QUALITY, SECURITY & PRIVACY AT VIAANTE

COMPLIANCE

HIPPA

HIPAA (Health Insurance Portability and Accountability Act of 1996) is United States legislation that provides data privacy and security provisions for safeguarding medical information. HIPAA is a US law designed to provide privacy standards to protect patient’s medical records and other health information provided to health plans, doctors, hospitals and other healthcare providers.

PHI

PHI Stands for Protected Health Information is any information in a medical record that can be used to identify an individual that was created, used or disclosed in the course of providing a Health Care Service.PHI is the term given to health data created, received, stored, or transmitted by HIPAA-covered entities and their business associates in relation to the provision of healthcare operations and payment for healthcare services.

GDPR

The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union. The GDPR sets out the principles for data management and the rights of the individual.

QUALITY & INFORMATION SECURITY

ISO 27001:2013 ISMS

An Information Security Management System (ISMS) ISO 27001:2013 is a set of policies and procedures for systematically managing an organization’s sensitive data. The Goal of ISMS which we have implemented in our organization is to minimize risk and ensure business continuity. we have  set standard for handling Confidentiality, Integrity and availability of Informational Assets.

ISO 9001:2015 QMS

ISO 9001:2015  is an international standard that specifies requirements for a quality management system (QMS). We have adopted the standard within our Organization to consistently provide services which in turn has many benefits, including satisfied customers, management and employees. Continuous improvement assures customer benefit by receiving services that meet their requirement and we deliver consistent performance.

SSAE 18 Soc Type II

Service Organization Control (SOC) reports are internal control reports on the services provided by a service organization providing valuable information that users need to assess and address the risks associated with an outsourced service. SOC is a report using the existing SysTrust and WebTrust principles. This report evaluates the business information system that relates to security, availability, integrity, confidentiality, and privacy.