Compliance
Quality, Security & Privacy at Viaante
HIPPA
HIPAA (Health Insurance Portability and Accountability Act of 1996) is United States legislation that provides data privacy and security provisions for safeguarding medical information. HIPAA is a US law designed to provide privacy standards to protect patient’s medical records and other health information provided to health plans, doctors, hospitals and other healthcare providers.
PHI
PHI Stands for Protected Health Information is any information in a medical record that can be used to identify an individual that was created, used or disclosed in the course of providing a Health Care Service.PHI is the term given to health data created, received, stored, or transmitted by HIPAA-covered entities and their business associates in relation to the provision of healthcare operations and payment for healthcare services.
GDPR
The General Data Protection Regulation (GDPR) is a legal framework that sets guidelines for the collection and processing of personal information of individuals within the European Union. The GDPR sets out the principles for data management and the rights of the individual.
ISO 27001:2022
ISO 27001:2022 is an international standard that provides a framework for Information Security Management Systems (ISMS). It was published in 2022 and replaced the previous 2018 and 2013 versions. The transition period for ISO 27001:2022 began on October 31, 2022 and ends on October 31, 2025. During this time, both versions of the ISO 27001 standard remain valid.
ISO 9001:2015 QMS
ISO 9001:2015 is an international standard that specifies requirements for a quality management system (QMS). We have adopted the standard within our Organization to consistently provide services which in turn has many benefits, including satisfied customers, management and employees. Continuous improvement assures customer benefit by receiving services that meet their requirement and we deliver consistent performance.
SSAE 18 Soc Type II
Service Organization Control (SOC) reports are internal control reports on the services provided by a service organization providing valuable information that users need to assess and address the risks associated with an outsourced service. SOC is a report using the existing SysTrust and WebTrust principles. This report evaluates the business information system that relates to security, availability, integrity, confidentiality, and privacy.