Mihi announced that it now complies with the U.S. Health Insurance Portability and Accountability Act (HIPAA), which sets the national standard for protecting sensitive patient health information.
The compliance verified by a third-party audit confirms that technical; physical; and administrative safeguards, and company policies, and procedures meet HIPAA requirements.
“We are committed to helping our Clients to operate efficiently and grow, no matter what industry they are in or types of products and services they provide. Companies need to trust that their services providers are equally responsible for the security and compliance over protected health information (PHI) and this measure allows us to validate our commitment to data protection. Companies across healthcare, healthcare technology, pharmaceutical, and government industries can rest assured that we meet and exceed HIPAA’s regulatory requirements,” said Gita Bhargava, Chief Operations Officer, Mihi.
Mihi does not collect or store PHI as part of normal business operations; however, any HIPAA-subject Clients relying on Mihi, can enter into a Business Associate Agreement (BAA) with Mihi in which both parties agree to fully comply with the requirements of the HIPAA rules.
“We’ve been making consistent investments in implementing processes and technologies to ensure compliance with all information security and data privacy measures globally. We understand how critical data privacy is for our Clients and their employees. Our compliance with HIPAA further inspires confidence in our commitment to data and information security,” added Rohit Lohia, Chief Innovation Officer.
Mihi’s other certifications and compliances include:
International Organization for Standardization – ISO 20000-1: 2011 – The international standard for best practices in managing and processing financial information, intellectual property, employee details, and information entrusted by third parties. ISO 20000 relates to service management and processes. Global Upside received certification in December 2019.
International Organization for Standardization – ISO 27001 – The international standard for best practices in managing and processing financial information, intellectual property, employee details, and information entrusted by third parties. ISO 27001 relates to information security risk management. Global Upside received certification in 2018.
General Data Protection Regulation (GDPR) Compliant – GDPR carries provisions that require businesses to protect the personal data and privacy of EU citizens for transactions that occur within EU member states. It also regulates the exportation of personal data outside the EU. Global Upside first announced compliance in 2016, audited by a big 4 public accounting firm.
Global Upside is part of the Global Upside Corporation brands, which collectively provide the most comprehensive range of solutions for domestic needs, international expansion, staffing, human resources, accounting, payroll, and HR technology. Global Upside corporate brands are supporting our Clients in 150+ countries.