Back to blog home

Fiddler is Now HIPAA Compliant

HIPAA Compliant

With customer security core to our mission, we’re thrilled to announce that Fiddler has achieved HIPAA compliance!  We are excited to work with organizations under HIPAA to help them maximize benefits from their ML initiatives and build responsible AI.

Organizations under HIPAA optimize healthcare outcomes, whether it’s better patient experiences, faster and more accurate medical diagnoses, or reduced fraudulent health insurance claims. Data science and ML teams can fully operationalize their ML workflows by monitoring and explaining model predictions before and after deployment, and improving model outcomes at scale. 

We are committed to upholding the highest standards of privacy and security for our customers and have been working hard to improve our security posture. As a result of these efforts, we have successfully completed annual SOC2 Type 2 assessment with zero deviations and successful HIPAA compliance. 

What is HIPAA?

HIPAA stands for the Health and Insurance Portability and Accountability Act of 1996, requiring the adoption of national standards for appropriate and secure handling of electronic health data. It includes a set of regulatory standards governing the security, privacy, and integrity of sensitive health care data, called Protected Health Information (PHI). PHI is any demographic healthcare-related information that can be used to identify a patient. Covered entities and business associates, including health insurance companies, HMOs, company health plans, and government programs that pay for healthcare (Medicaid, Medicare), and any vendor who service healthcare clients come into contact with PHI in any way, must be HIPAA compliant.

What is SOC2?

SOC 2 stands for Systems and Organization Controls. It was created by the AICPA in 2010. SOC 2 was designed to provide auditors with guidance for evaluating the operating effectiveness of an organization’s security protocols. The SOC 2 security framework covers how companies should handle customer data that’s stored in the cloud. At its core, the AICPA designed SOC 2 to establish trust between service providers and their customers.

To learn more about Fiddler’s approach on security, visit our security webpage.