Schedule A Call

March 2024

Compliance & Security Announcements
March 8, 2024by EditorArticle

Compliance & Security Announcements

Timeless Medical Systems® utilizes enterprise-grade best practices to protect our customers’ data, and works with independent experts to verify its security, privacy, and compliance controls, and has achieved SOC 2 Type 2 and HIPAA reports against stringent standards.

About HIPAA

HIPAA is a federal law that requires the creation of national standards to protect sensitive patient health information from being disclosed without the patient’s consent or knowledge. This rigorous, independent assessment of our compliance serves as validation of our dedication and adherence to the highest standards to protect your sensitive patient health information.

About SOC 2

Earning SOC 2 Type 2 “no exceptions” attestation means that our systems controls’ design has met the rigorous standards for security and privacy compliance laid out in the “System and Organization Controls” (SOC) guidance.

Developed by the Assurance Services Executive Committee (ASEC) of the AICPA, the Trust Services Criteria is the set of control criteria to be used when evaluating the suitability of the design and operating effectiveness of controls relevant to the security, availability, and confidentiality of the information processed by the systems at an entity, a division, or an operating unit of an entity. 

Reporting

We work with an independent auditor to maintain SOC 2 and HIPAA reports, which objectively certifies our controls to ensure the continuous security of our customers’ data.

Continuous Security Control Monitoring

Timeless Medical Systems® uses Drata’s automated platform to continuously monitor its 100+ internal security controls against the highest possible standards across the organization. With Drata, Timeless Medical Systems® has real-time visibility across the organization to ensure the end-to-end security and compliance posture of our systems. Automated alerts and evidence collection allows Timeless Medical Systems® to confidently prove its commitment to protecting your sensitive health information any day of the year, while fostering a security-first mindset and culture of compliance across the organization.

Employee Trainings

Security is a company-wide endeavor. All employees complete an annual security & HIPAA training program and employ best practices when handling customer data.

Penetration Tests

Timeless Medical Systems® works with industry leading security firms to perform annual network and application layer penetration tests.

Secure Software Development

Timeless Medical Systems® utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.

Data Encryption

Data is encrypted both in-transit using TLS and at rest.

We welcome all customers and prospects who are interested in discussing our commitment to security and reviewing our SOC compliance reports to contact us at: infosec@timelessmedical.com

Learn More About Our Technical Information
Read More
support@timelessmedical.com

614 North River Road, Suite E
Charlottetown, PEI C1E 1K2

About

Timeless Medical Systems® is the global leader in maternal breast milk, donor human milk and infant formula & nutritional supplement management and administration software.

Linkedin-in

Solutions & Services

Resources

Quick Links

Timeless Medical Systems® – © 2024 – All Rights Reserved.