Resources

HITRUST CSF Certification

Aptible has achieved HITRUST CSF Certification for Enclave and Gridiron. Learn what this means and how you can think about your own path to certification.

Aptible Enclave and Gridiron are both HITRUST CSF Certified. In addition to HITRUST CSF Certification, Enclave and Gridiron are both ISO 27001 certified, SOC 2 Type 2 audited, and have full HIPAA and GDPR/Privacy Shield compliance programs in place.

Download the Aptible Enclave/Gridiron HITRUST CSF Standalone Certification Letter here.

What is the HITRUST CSF?

The HITRUST Common Security Framework (CSF) Certification is a compliance framework based on ISO/IEC 27001 and integrates HIPAA, HITECH, and a variety of other state, local, and industry frameworks and best practices This certification is awarded when an independent assessor finds that an organization has achieved certain maturity levels on implementation all of the required HITRUST CSF controls.

To learn more about HITRUST and Aptible’s HITRUST Certification for Enclave and Gridiron, check out this post on our blog.

How does HITRUST CSF Certification help you as an Aptible customer?

As an Aptible customer, these assurance programs give you peace of mind that Enclave and Gridiron are managed according to industry best practices, and that your data and computing architecture is safe and private. You can use Aptible’s certifications and audit reports to show your own customers and stakeholders that your cloud stack meets stringent requirements for data protection.

How can Aptible help you with your own HITRUST CSF Certification?

If your own customers or stakeholders demand HITRUST CSF Certification, you can leverage Aptible’s compliance programs to make your own certification process faster, easier, and less costly.

If you are a B2B SaaS company, using Enclave is the fastest way to fly through vendor security assessment, risk questionnaires, and other steps in the B2B sales process. Your customers will accept our certifications as evidence that your Enclave architecture is managed according to the most stringent security best practices.

If you are interested in HITRUST Inheritance for Enclave, please let us know.

Gridiron is a SaaS platform for security management. Customers use it to build and manage security programs that meet and exceed protocols like HIPAA, GDPR, SOC 2, and ISO 27001. The HITRUST CSF is separately licensed by HITRUST and is not available in Gridiron by default. Please contact us if you would like to use the HITRUST CSF in Gridiron.

More HITRUST Certification Resources

Defense in Brief

Sign up to get the best in security and compliance delivered monthly.

From the Blog

Webinar Recap: GDPR - Practical Advice for SaaS Companies

Henry Hund on May 21, 2018

During this webinar we covered the practical, actionable steps to take to actually become GDPR compliant. Get the recap, recording, and slides.

Read more

Aptible Enclave and Gridiron are HITRUST CSF Certified

Chas Ballew on March 13, 2018

Aptible has achieved HITRUST CSF Certification for Enclave and Gridiron. This post shares a bit more about what this means and how you can think about your own path to certification.

Read more

Aptible SOC 2 Type 2 Report Now Available

Chas Ballew on March 5, 2018

Aptible has achieved SOC 2 Type 2 compliance for the security and availability Trust Service Principles. This post shares a bit more about what this means and why this type of compliance is so valuable to B2B SaaS companies in specific. We’ll also share how you can start building a security program that meets SOC 2 requirements and is audit-ready.

Read more