IronVest Achieves SOC 2 Type 1 and HIPAA Compliance: Ensuring Enterprise-Level Security for Customer Data

IronVest is proud to announce that we have completed our SOC 2 Type 1 and HIPAA compliance. This is the latest achievement in our ongoing commitment to industry-leading security for our users and customers. Receiving a compliant SOC 2 report means that IronVest is securely managing 3rd party data to protect information and ensure privacy for customers of IronVest App, browser extension, and business solutions.

The Road to SOC2

Choosing a vendor to complete the SOC 2 examination process is a critical decision. IronVest partnered with Prescient Assurance, a renowned leader in security and compliance attestation for B2B and SAAS companies worldwide. Working with Prescient, IronVest completed a thorough review of our systems, controls, policies, and vendors, as well as testing and auditing to ensure HIPAA compliance with the standards set forth by the American Institute of Certified Public Accountants. 

Our Process & Commitment

Our commitment to security and privacy goes beyond the typical protocol and best practices of data security like encryption and back-up, application security and business security policies, education and incident response. IronVest is a company built to continuously advance our technology to ensure it’s the most secure it can be. Threats don’t stop. And neither do we. Our security page outlines how we protect the privacy and data of our users and customers. 

What’s Next?

SOC 2 Type II compliance, which requires an ongoing observation window of 6-12 months, is the next step we are currently focused on. We will continue to make security a top priority and provide updates as we make progress toward Type II compliance.