Kontent.ai provides HIPAA compliance for customers

Executive summary

Kontent.ai application has been developed with security and privacy in mind. It contains security features that help customers protect their data. In addition, the internal operation of Kontent.ai as an organization follows industry standards and best practices to ensure that customer data, including PHI, remains secure. 

• Kontent.ai has a strong emphasis on security, coordinated by the internal security team led by CISO
• The security program of Kontent.ai is focused on protecting customer data and covers all areas of application, infrastructure, information, physical, and supply chain security
• As an assurance, ISO/IEC 27001, 27017, and SOC 2 Type 2 certifications/audit reports are provided to customers upon a request

How to work with this material

Kontent.ai has prepared this whitepaper to inform customers about:

• How Kontent.ai addresses the specific requirements internally
• What further steps can customers take to secure PHI when using Kontent.ai application

These elements comprise a shared responsibility model over PHI in Kontent.ai cloud offering. The attached table (see below) can be read by rows, where every row covers a specific requirement, Kontent.ai internal operation, and further recommendations. It is essential to review those recommendations and utilize all security features and functions of Kontent.ai application in order to protect PHI.

The table covers merely relevant requirements we have chosen to demonstrate compliance and is not an exhaustive list. Customers are encouraged to contact Kontent.ai through their customer representative or security@kontent.ai should they seek further answers.

Overview of the shared responsibilities

Want to take a look at the general rules, Kontent.ai controls and comments, and Kontent.ai recommendations?

Information in this whitepaper is for informational purposes only and does not constitute legal advice. It discusses how Kontent.ai helps with compliance of key requirements from the HIPAA Security Rule. The information provided is based on general principles of United States law and regulations as of the publication date. The information provided in this Whitepaper may not reflect recent changes in HIPAA regulations or legal interpretations. Readers are advised to consult legal professionals for tailored advice and guidance. While efforts have been made to ensure accuracy, no representation or warranty, express or implied, is made regarding completeness, accuracy, reliability, or suitability. Kontent.ai is not liable for any direct, indirect, incidental, consequential, punitive, or special damages arising out of or in connection with the use of this Whitepaper or reliance on the information contained herein. Customers are responsible for their own compliance with HIPAA and any other regulations and for ensuring that Kontent.ai application is used in compliance with applicable laws.