Coveo, a leader in AI-powered search, announced that the Coveo Cloud Platform was successfully audited for Compliance to the requirements of the Health Insurance Portability and Accountability Act (HIPAA) and successfully passed the Service Organization Control Type 2 (SOC 2 Type 2) Examination. The audits conducted by the independent CPA firm Schellman & Company, LLC further authenticate Coveo’s commitment to protecting customer and partner data within its technology stack.
The HIPAA examination performed on June 30th, 2017, surveyed the Coveo Cloud Platform on the Security Rule, which establishes national standards to protect individuals’ electronic personal health information that is created, received, used, or maintained by a covered entity. The examination also assessed the company’s procedures following the Breach Notification Rule, which requires HIPAA-covered entities and their business associates to provide notification following a breach of unsecured protected health information.
The Coveo Cloud SOC 2 Type 2 examination was performed from July 1, 2016, to June 30, 2017 by Schellman & Company, LLC and was evaluated on Security, Availability, and Confidentiality principles. The SOC 2 Type 2 examination was designed by the American Institute of Certified Public Accountants (AICPA) and is a highly trusted industry standard that assesses the controls at a service organization. Coveo joins an elite group of companies to have passed this rigorous examination, specifically evaluating the Coveo Cloud Platform’s security and protection from unauthorized access, availability for operation, and confidentiality of client information.
“Ensuring the Coveo Cloud infrastructure is built securely in order to protect our clients’ information is a matter of utmost importance at Coveo. Coveo’s successful completion of HIPAA and SOC 2 Type 2 is an affirmation of the high standards the company places on its employees and technology to ensure the safety and security of our clients information, especially in matters of sensitive data surrounding health records,” said Jean Lavigueur, Coveo’s CFO, Chief Information Security Officer (CISO) and Privacy Officer.