End-to-end security
Our interoperability platform keeps patient information safe with 100% cloud hosting, HITRUST® r2 certification,* and third-party audits
Redox has earned the Health Information Trust Alliance (HITRUST®) r2, Level 3 certification*—the highest level achievable. Our certification, which recognizes the maturity and complexity of our security program, is validated by a third-party auditor.
Redox maintains a SOC 2® Type 2 report. The Service Organization Control (SOC) 2 standard indicates that Redox establishes the compliance and controls for information security, availability, privacy, and other metrics. Type 2 indicates a compliance and evaluation period over multiple months.
The Redox interoperability platform is 100% hosted on Amazon Web Services (AWS) and Google Cloud Platform (GCP), with which we have business associate agreements (BAAs). Additional security measures for data connections include:
To protect your data, Redox exceeds industry, HIPAA-compliant, and National Institute of Standards and Technology (NIST) recommended encryption standards.
SOC 2® is an international registered trademark of the AICPA.
*Applies to all Redox data transactions that are AWS-hosted