The security and privacy of our customer’s data is top priority at Sweetch. We are HIPAA and GDPR compliant and have implemented ISO 27001 and ISO 27799 standards.
HIPAA Compliant
Sweetch was developed in accordance with HIPAA (Health Insurance Portability and Accountability Act of 1996). All integrations and interoperability to Sweetch are done using HIPAA standards.
EU GDPR Compliant
Sweetch is GDPR compliant and GDPR guidelines of privacy and security.
ISO 27001
The International Information Security Standard
ISO/IEC 27001:2013 (ISO 27001) is an international standard that helps organizations manage the security of their information assets. Provides a management framework for implementing an ISMS (information security management system) to ensure the confidentiality, integrity, and availability of all corporate data.
ISO 27799
Information Security Management In Health
By implementing ISO 27799:2016, healthcare organizations and other custodians of health information will be able to ensure a minimum requisite level of security that is appropriate to their organization's circumstances and that will maintain the confidentiality, integrity and availability of personal health information in their care.
The controls discussed in this International Standard are those identified as appropriate in healthcare to protect confidentiality, integrity and availability of personal health information and to ensure that access to such information can be audited and accounted for. These controls help to prevent errors in medical practice that might ensue from failure to maintain the integrity of health information. In addition, they help to ensure that the continuity of medical services is maintained.