We are disruptors, innovators; always doing more than others on behalf of members and clients.
Our team put those qualities on full display in a challenging business year due to the ongoing Covid-19 pandemic. The hard work resulted in what few companies the size of Renalogic even attempt; we received notification in December that Renalogic received the Service Organization Controls 2 (SOC2) certification. The certification resulted from a comprehensive audit by an independent auditing firm adhering to the Statement on Standards for Attestation Engagements No. 18 (AT-C section 205, Examination Engagements) of the AICPA.
Our desire to remove barriers to serving our members and customers motivated us to invest the time and resources to pursue SOC2 certification. A strong culture of organizational health and our company’s rapid growth supported the need to formalize structures and processes—our internal motivation combined with industry data regarding cybersecurity breaches. The HIPPA Journal reports 9.7 million health care records were compromised in September of 2020 alone. Since COVID-19, the U.S. Federal Bureau of Investigation reported a nearly 300 percent increase in cybercrime.
Before launching the SOC2 process, we created an internal monitoring program commonly referred to as Renalogic Excellence. It guided us through our formative years, but it was not enough for a company striving to be the best, which is always our goal.
The rigor required for the SOC2 examination signifies our processes, procedures, and controls have been formally evaluated and tested by an independent accounting and auditing firm. The examination included the company’s controls related to the Trust Services Principles and Criteria for Security and Privacy.
Once again, proving we serve the market as disruptors and innovators, we have accomplished what many organizations our size will not even attempt. The SOC2 certification assures clients and future clients we lead with strong corporate governance and hold ourselves to the highest standards with client data and security as we do with all aspects of our business.