MedaSystems Demonstrates Continued Commitment to Protecting Expanded Access Data with Successful SOC 2 Type 2 Audit

We are thrilled to announce the successful completion of a Service Organization Control (SOC) 2 Type 2 audit. As industry leaders in the SaaS Expanded Access software sector, this accomplishment underscores our unwavering commitment to data security, patient privacy, and regulatory compliance.

“Our team's dedication to upholding the highest data protection standards is unwavering. Achieving this certification reinforces our customers' trust in us," notes Jeff Thibeault, Chief Technology Officer.  

The SOC 2 Type 2 attestation, governed by the American Institute of Certified Public Accountants (AICPA), documents an advanced level of trustworthiness and security. Unlike the Type 1 report, which evaluates the design of controls at a specific point in time, the Type 2 report examines the effectiveness of these controls over a defined period.

Operating as an enterprise SaaS startup in a tightly regulated domain, achieving the SOC 2 Type 2 certification reiterates the resilience and reliability of our security controls—a crucial requirement for technology solutions in the life sciences and healthcare sectors.

At MedaSystems, security and compliance are critical factors in the fabric of our software design and architecture. For instance, in addition to SOC 2, our platform aligns with other pivotal standards such as GDPR, HIPAA, and FDA 21 CFR Part 11. Beyond that, we continuously engage in risk assessments, security penetration tests, disaster recovery drills, and regular security awareness training for our team.

We understand that security and compliance are always evolving, and we remain committed to staying at the forefront of these vital areas.

Are you interested in diving deeper into our practices? 

A copy of our SOC 2 Type 2 report is available for current and potential customers upon request.