We are fully invested in the security of our clients’ data: It’s a fundamental part of the service Garner provides. Today, we’re excited to announce that we’ve successfully completed our SOC 2 Type II audit. This is a testament to Garner’s commitment using secure development principles, having strong operation guidelines in place, and following processes that ensure we take great care of our customers’ data.
What is a SOC 2 Type II audit?
SOC 2 is considered the gold standard for security compliance for software as a service (SaaS) companies. SOC 2 requires companies to establish and follow strict information security policies and procedures, encompassing the security, availability, and confidentiality of customer data.
The SOC 2 Type II audit confirmed that Garner’s system is designed to keep our clients’ sensitive data secure. Passing the SOC 2 Type II audit means our company has consistently maintained processes and practices that meet the required levels of oversight and monitoring so we can proactively identify and address any unusual activity.
Why does SOC 2 compliance matter?
The SOC 2 audit evaluates applicants in five categories within the Trust Services Criteria of the American Institute of Certified Public Accountants:
Security – Verifying the system is protected against unauthorized access, use, or modification to meet the entity’s commitments and system requirements
Availability – Verifying the system is available for operation and use to meet the entity’s commitments and system requirements
Processing Integrity – Verifying the system processing is complete, valid, accurate, timely, and authorized to meet the entity’s commitments and system requirements
Confidentiality – Verifying that information designated as confidential is protected to meet the entity’s commitments and system requirements
Privacy – Verifying personal information is collected, used, retained, disclosed, and disposed to meet the entity’s commitments and system requirements
Know your data is safe and secure
We hope this update helps you and your IT team rest easy knowing your data in Garner is secure. Garner’s SOC 2 Report is available upon request and under NDA.
Garner Health Technology, Inc. is a health technology company that offers both a benefit program that helps employees find the best doctors in their community and a novel tool to power data-driven provider referrals. Using a new approach to data science and novel financial incentives, Garner is able to lower out-of-pocket spending for employees, save employers 10% or more on overall health benefit costs, and provide doctors with the tools to make more informed referrals for their patients. For more information, please visit www.getgarner.com.