Healthcare risk management provider Global Excel has announced that it has been certified as compliant with Type II Service Organization Control (SOC) 1 and Canadian Standard on Assurance Engagements (CSAE) 3416 and Type II SOC 2 and CSAE 3000 standards across its organisation.
According to Global Excel, the Type II SOC 1 and CSAE 3416 report provides confirmation that ‘internal and connected external reporting controls are properly designed, in place and validated through rigorous testing’.
Likewise, the Type II SOC 2 and CSAE 3000 report ‘examines the effectiveness of the same controls, including Privacy, Confidentiality, Processing Integrity, Availability and Security, over an extended period – typically around 12 months.’
The reports complement Global Excel’s International Organization for Standardization (ISO) 27001:2013 and SOC Type 1 and 2 certifications, as well as its General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA) and Personal Information Protection and Electronic Documents Act (PIPEDA) compliance.
Global Excel’s Director of Information Security and Compliance, Paul Anderson said: “Protecting our clients’ and their members’ highly sensitive healthcare data has always been a top priority for Global Excel Management. We’re proud of our continuing commitment to information security and achieving Type II SOC 1 and 2 certification underscores our longstanding reliability as a global business partner for actors in the insurance and assistance sector.”