Protecting Our Clients’ Vital Information
MBMS takes the security of our clients and their patients’ data seriously. Everything that we do operationally must pass strict scrutiny when viewed through the lenses of data security and business continuity. We hold ourselves accountable to the highest standards in our industry by submitting annually to two separate third-party auditing entities: one for Health Insurance Portability and Accountability Act (HIPAA), and the other for System and Organization Controls (SOC) 2 Type II.
We have systems in place that provide for the ongoing review of all policies, processes, and procedures that we utilize for regulatory compliance. We strive to do everything that we can to assist our clients and their patients in feeling comfortable and confident that their data are always well-protected and secure. We are proud of the fact that MBMS has never had a data breach. Many of our competitors cannot make that same claim.
MBMS is SOC 2 Type II compliant as a result of ongoing audits conducted yearly by one of the best compliance auditing firms in the country. This compliance is indisputable evidence that MBMS has the strongest commitment to delivering high-quality services to its clients while demonstrating we maintain the necessary internal controls and processes to protect our clients’ vital information.
How SOC 2 Type II Audits Work
■ SOC 2 Type II engagements are based on the AICPA’s Trust Services Principles.
■ SOC 2 Service Auditor Reports focus on a Service Organization’s non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality, and privacy of a system.
■ The SOC 2 Service Auditor report verifies the suitability of the design and operating effectiveness of MBMS’s controls to meet all of the criteria for these principles.
■ MBMS selected the security, availability, and confidentiality principles for the basis of our audit, confirming MBMS delivers trust-based services to their clients.
■ By communicating the results of these annual audits, our clients can be assured and have confidence in their reliance on our controls.
