Compliance & Certifications
PathwayRx meets the highest standards for healthcare data protection and privacy.
HIPAA Compliant
Full compliance with the Health Insurance Portability and Accountability Act
- Administrative safeguards (workforce training, access management)
- Physical safeguards (facility access, workstation security)
- Technical safeguards (access control, audit controls, encryption)
- Business Associate Agreements (BAAs) executed with all partners
SOC 2 Type II
Audited security controls verified by independent CPA firm
- Security: Protection against unauthorized access
- Availability: System uptime and disaster recovery
- Confidentiality: Data protection and encryption
- Privacy: Personal information handling
HITRUST CSF
Healthcare industry gold standard for security certification
- Comprehensive risk management
- Information protection program
- Cybersecurity practices
- Third-party assurance
GDPR Ready
Compliant with European data protection regulations
- Lawful basis for processing
- Data subject rights (access, deletion, portability)
- Privacy by design and default
- Data protection impact assessments
Request Documentation
Need compliance documentation for your vendor assessment? We're happy to provide:
SOC 2 ReportHIPAA DocumentationSecurity QuestionnaireBAA Template
Request Documents