Avatier Achieves New Security Milestone with SOC 2, Type 2, and HIPAA/HITRUST Compliance

Avatier’s Identity Anywhere passes rigorous security controls, governance, and privacy audits with ease, demonstrating robust security of Avatier cloud identity management platform

Avatier Corporation, the pioneers of work from anywhere (WFA) Identity Governance & Administration (IGA) cloud service, today announced the successful completion of an arduous audit process for compliance with SOC 2, Type 2. and HIPAA/HITRUST compliance. With the successful completion of the audits, customers and partners can be confident that the internal control environment that supports Avatier’s Identity Anywhere platform is secure and that employee identities and data assets are protected in compliance with the latest industry standards.

The American Institute of CPAs (AICPA) SOC 2, Type 2, standard defines the criteria for controls and processes to protect customer information and provide data security. The SOC 2, Type 2, audit is conducted by an independent accounting firm and evaluates identity management controls based on five trust principles: security, availability, processing integrity, confidentiality, and privacy. Completing the SOC2, Type 2, audit demonstrates that Avatier’s identity management, governance, and security administration platform adheres to the most strenuous industry guidelines for security and authentication.

Completing the HITRUST audit for compliance with HIPAA, the Healthcare Insurance Portability and Accountability Act demonstrates that the Avatier Identity Anywhere platform also is compliant with information risk management standards to protect patient information and healthcare data. HITRUST is the organization responsible for HIPAA security review, ensuring that organizations achieve, maintain, and provide assurances regarding compliance with the HIPAA Security Rule, HIPAA Privacy Rule, and the HIPAA Breach Notifications Rule.

“Security experts continue to face new security, identity, and governance challenges and rely on standards-compliant tools and technologies that are validated by third parties gives them confidence that they have invested in solutions that are compatible and scalable,” said Nelson Cicchitto, founder and CEO of Avatier. “When it comes to enterprise security, we consider standards compliance as table stakes. The ease with which our Identity Anywhere solution passed both SOC 2 and HIPAA audits is proof that Avatier delivers robust security to support all the operational needs of our customers.”

Avatier Identity Anywhere provides seamless access to data resources while maintaining enterprise security. Identity Anywhere is a passwordless identity, governance, and administration (IGA) solution that includes user lifecycle and password management, universal workflow, service catalog, access governance, and single sign-on for enterprise applications and cloud services. Avatier Identity Anywhere provides the same standards-compliant privacy and identity security features whether you are accessing data assets using the web, iOS, Android, Chrome, Microsoft Outlook, Microsoft Teams, Slack, chatbots, or other collaboration platforms. The Identity Anywhere platform is proving especially valuable for securing enterprise organizations in highly regulated industries such as healthcare, financial services, technology, manufacturing, government, and education.