Share this article on:
LuxSci, the Massachusetts-based provider of HIPAA-compliant email communications services, has announced it has achieved HITRUST CSF Certification.
The HITRUST Common Security Framework (CSF) is a comprehensive, certifiable framework for organizations that create, access, store, or transmit sensitive and regulated data. The HITRUST CSF consists of a prescriptive set of scalable controls that confirm to multiple regulations and standards, including those of the Health Insurance Portability and Accountability Act (HIPAA) Security Rule and the ISO/IEC 27000-series.
Through the incorporation of federal and state regulations, standards, and frameworks, and using a risk-based approach, the HITRUST CSF helps organizations address compliance challenges and implement safeguards to ensure the confidentiality, integrity, and availability of sensitive data. HITRUST CSF Certification is the gold standard for security and the most widely adopted cybersecurity framework in the healthcare industry.
LuxSci adopted the HITRUST CSF and applied its principles and controls to its entire fleet of servers that are used to deliver email, marketing, forms, texting and web hosting services. LuxSci recently underwent a comprehensive third-party audit against the HITRUST CSF controls and was confirmed as having achieved HITRUST CSF certified status for information security.
Customers of service providers such as LuxSci need unequivocal evidence that their service providers are HIPAA compliant and are taking all the necessary steps to ensure privacy and security. HITRUST CSF certification provides that evidence.
“Achieving HITRUST CSF certification validates the security-first posture we have been espousing for years,” said LuxSci CEO and Founder, Erik Kangas. “Security is a process: you are never done being secure. The HITRUST CSF model evolves with the security landscape and we are proud to be able to use it as a benchmark for measuring and managing our security and compliance.”
LuxSci is committed to ensuring its servers remain secure and customer data is always protected. By adopting security best practices, the company will ensure that it continuously maintains its HITRUST CSF Certification status and will help its customers maintain the highest standard of security and compliance, while helping them solve their particular business problems.