Stack AI is SOC 2 Type II and HIPAA Compliant

Stack AI Achieves SOC 2 Type II + HIPAA

At Stack AI, security and privacy of our customers' data is our top priority. Today, we are thrilled to announce that Stack AI is now SOC 2 Type II and HIPAA compliant.

The audit was conducted by Modern Assurance Modern Assurance, a firm with a proven history of auditing numerous software companies. Additionally, we partnered with Secureframe to monitor, collect, and submit evidence to auditors.

What is SOC 2?

SOC 2 is an audit report created by the American Institute of CPAs (AICPA). This audit assesses controls concerning a system's security, availability, processing integrity, confidentiality, and privacy.

It is a recognized standard in the industry, crucial for companies to demonstrate their commitment to protecting customer data and maintaining high operational standards.

There are two types of SOC 2 reports:

• Type I: evaluates if a company is compliant at a specific point in time.
• Type II: verifies that a company remains compliant over an observation period.

Stack AI has achieved SOC 2 Type II compliance for the period from March 1st to May 31st, 2024.

What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) sets national standards for protecting sensitive patient health information (PHI).

By achieving HIPAA compliance, Stack AI ensures that we meet the stringent requirements necessary to handle PHI securely, making us a trusted partner for healthcare organizations.

Stack AI was also audited against HIPAA standards during the same period as the SOC 2 Type II audit.

Why are SOC 2 and HIPAA important?

SOC 2 and HIPAA are crucial for fostering robust controls to safeguard customer data. For us, this represents the foundation of a long-term security commitment.

If you have any questions or would like to learn more about our SOC 2 Type II and HIPAA compliance, please contact us at dpo@stack-ai.com.