Security Controls

Ninth Brain Suite goes to great lengths to protect your company data so you can feel secure in utilizing our software as a service (SaaS). Ninth Brain’s infrastructure is with Microsoft Azure for production and back-up environments. All data is protected and stored within the United States.

Ninth Brain maintains compliancy in the following:

• HIPAA – The Health Insurance Portability and Accountability Act of 1996 which was created to safeguard the integrity, confidentiality, and availability of the patient’s Protected Health Information (PHI).
• NIST 800.171 – The Protection of Controlled Unclassified Information
• GDPR – the EU General Data Protection Regulation

Microsoft Azure maintains compliancy in the following:

•  HIPAA
•  NIST 800.171
•  GDPR
•  Soc 2 Type II
•  HITRUST
•  ISO
•  CSA

We have created policies and take every precaution with controls within:

•  Cybersecurity Management and Personnel Security
•  IT Network Security
•  Data Protection and Recovery
•  Physical Security
•  IT Application Management
•  Vulnerability Management
•  IT Security Monitoring and Response
•  Supplier Management