BerkOne adheres to high standards of integrity in the performance of our business services. We continually take steps to ensure that our software, networks, policies, and procedures comply with applicable laws and regulations. BerkOne employs strict policies and a robust internal auditing department to ensure that we meet the enhanced security and compliance measures required by our clients, including those within highly regulated industries. BerkOne maintains an applicable level of compliance with the CCPA, HIPAA, HITECH, Title 21 CFR Part 11, Gramm-Leach-Bliley, and similar regulations and standards.
BerkOne has established administrative, physical, and technical safeguards to reasonably protect the confidentiality, integrity, and availability of information processed by BerkOne, and BerkOne adheres to a formal Information Security Program which is reviewed and updated annually.
BerkOne utilizes an external auditing firm to perform an annual SSAE18 Audit Type II “Report on Controls at a Service Organization Relevant to Security, Availability, and Processing Integrity”, aka SOC2 Report. BerkOne has been certified as SOC2 compliant since 2012. Prior to 2012, BerkOne was certified compliant with the previous industry standard – SAS070 – since 2002. BerkOne employs an external security firm to perform an annual external penetration test to assess our cyber-security controls.
If you have any questions or concerns, please contact us at 866-396-8194 or use the Contact Us link to submit your inquiry.
