Certifications

Corodata has been audited for HIPAA Compliance and deemed compliant: The Health Insurance Portability & Accountability Act (HIPAA) sets security standards on medical information. We follow specific protocols set by HIPAA to provide excellent protection for our clients’ information. Our employees go through additional rigorous HIPAA training annually to stay up to date on new laws and security protocols, so they can perform to the utmost of their abilities. This knowledge and training helps our employees uphold our standards for compliance and safety of client information.

Corodata has been audited for SSAE 18 soc 1 and soc 2 Certification and deemed compliant: Statement on Standards for Attestation Engagements 18 (SSAE 18), developed by the American Institute of Certified Public Accountants (AICPA), evaluates service companies’ operations. Our SSAE 18 certification encompasses both SOC 1 and SOC 2 reports, emphasizing our dedication to data security, privacy, and overall operational excellence. Corodata was audited by Kirkpatrick price.

The SOC 1 report assesses the controls relevant to financial reporting, ensuring the integrity of our financial systems and the protection of our clients’ financial data. Meanwhile, the SOC 2 report focuses on security, availability, processing integrity, confidentiality, and privacy. These dual certifications within our SSAE 18 framework demonstrate our commitment to comprehensive internal controls and the highest standards of information security, providing our clients with the utmost confidence in our operations.

Corodata has been awarded PRISM Privacy+ Certification ®: This globally recognized certification verifies our compliance with data protection laws, ensuring that we meet regulatory due diligence obligations. We voluntarily maintain Privacy+ certification for our services related to physical storage, hard-copy records, and offline removable computer media.

Corodata has received NAID Certification: As the governing body for the information destruction industry, iSigma NAID conducts rigorous audits, including both scheduled and unannounced evaluations. Our NAID certification for plant-based and mobile document destruction, as well as hard drive and electronic media destruction, assures our clients of our competence and commitment to secure data disposal.

Corodata is a Certified California Green Business per Santa Clara County program: Beyond compliance, we prioritize sustainability as a Certified California Green Business. Our methods, procedures, and equipment not only save energy and lower costs but also minimize our environmental impact.

Note: KirkpatrickPrice, a licensed CPA and PCI QSA firm, conducted the audits and essential testing of Corodata’s controls, certifying us as SOC 1 & SOC 2 and HIPAA compliant. With over 18 years of experience in information security and compliance assurance, they have consistently performed assessments, audits, and tests that fortify Corodata’s information security and internal controls.