Data and Security

Coding Image

We understand keeping the data of your organization and patients safe is paramount in today’s world. Savista has taken the right measures of privacy, security, confidentiality, processing integrity, and disaster recovery to maintain the safety of your data.

 

Savista leverages the NIST Cybersecurity Framework to prevent, detect and respond to cyberattacks. We are also proud to be SOC II certified, meaning our systems and processes that protect sensitive data meet the standards established by the industry-leading security auditor. Lastly, and importantly, no matter who is working on your account or where, your data never leaves our servers in the United States.

Our systems and processes provide a high level of:

  • Privacy through access control, data encryption and data minimization
  • Security through intrusion detection, multi-factor authentication, network/application firewalls
  • Confidentiality through policies & procedures and data masking & anonymization
  • Processing Integrity through quality assurance monitoring and secure storage & transmission
  • Availability through disaster recovery measures and security incident handling

The Right People, The Right Training

Savista takes great care to ensure we hire the right people and equip them with the knowledge they need to keep data secure.  All Savista colleagues undergo a rigorous background check, and front-line workers are required to complete quarterly security awareness training and HIPAA compliance training. In addition, Savista conducts monthly phish testing to raise employee awareness about current cybercriminal tactics.

AdobeStock_379625084 AdobeStock_379625084

Our Highly Secured Technology Infrastructure

Awareness Training

Quarterly Security Training

Monthly Phish Testing

Risk Assessments

Annual SOC 2 & PCI

Annual Penetration Testing

Ongoing vulnerability scans

Security Policies

Policies & Procedures

Incident Response

Data Management

Data Encryption

Security Protocols

Backup Management

Access Control

Active Directory, ID Mgmt.

Multi-factor authentication

Password enforcement

Network Security

Intrusion Prevention/Detection

Edge & Internal Firewall Services

Endpoint Security

Antivirus

Intune/Patch Mgmt.

Azure Virtual Desktop

Monitoring

NOC/MSSP

Active network monitoring

ISO Certified Badge
soc-2 certified transparent rectangle
21972-312_SOC_NonCPA