Unified creative agency MERGE today announced that MERGE Boston and the systems it uses to manage and maintain client data have earned Certified status for information security by HITRUST.
HITRUST CSF Certified status demonstrates the agency’s systems used to manage and maintain client data has met key regulatory requirements and industry-defined requirements and is appropriately managing risk. This achievement places MERGE Boston in an elite group of organisations worldwide that have earned this certification. By including federal and state regulations, standards and frameworks, and incorporating a risk-based approach, the HITRUST CSF helps organisations address these challenges through a comprehensive and flexible framework of prescriptive and scalable security controls.
“Agencies are under growing pressure to meet complex compliance requirements that include technical and process elements such as HIPAA, NIST, ISO and COBIT,” said MERGE Boston President Andrew Pelosi. “The HITRUST CSF is the gold-standard that needs to be met, and MERGE Boston is pleased to be able to demonstrate its commitment by achieving HITRUST CSF Certification.”
“The HITRUST CSF has become the information protection framework for the health care industry, and the CSF Assurance program is bringing a new level of effectiveness and efficiency to third-party assurance,” said Ken Vander Wal, chief compliance officer, HITRUST. “The HITRUST CSF Certification is now the benchmark that organisations required to safeguard PHI are measured against with regards to information protection.”