Security and Compliance

AICPA SOC 2 and SOC 3

SOC2 and SOC3 Reports are independent third-party examination reports that demonstrate key compliance controls and objectives. The purpose of these reports is to provide an understanding of our controls established to support operations and compliance. The report includes an assessment against the Common Criteria principles of Security, Availability, and Confidentiality.

The Center for Internet Security, Inc. (CIS®)

The Center for Internet Security, Inc. (CIS®) is a community-driven non-profit, responsible for the CIS Controls® and CIS Benchmarks™, globally recognized best practices for securing IT systems and data. They lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats. CIS Hardened Images® provide secure, on-demand, scalable computing environments in the cloud.

Intelex is a member of CIS SecureSuite and implements CIS Hardening, CIS Benchmarks and CIS Controls.

EU GDPR Compliant

At Intelex Technologies, we are committed to protecting your privacy and ensuring that your personal data is handled in a safe and responsible manner in accordance with compliance to the EU-GDPR regulations and EU-U.S. Data Privacy Framework (EU-U.S. DPF). As a provider of a leading software as a service (SaaS) solution that deliver a range of innovative software applications designed to help organizations streamline their environmental, health, safety, and quality management processes, we recognize the importance of Privacy compliance, and we are dedicated to upholding the highest standard of data privacy and adherence to EU-GDPR regulations and Data Privacy Framework (EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework).

HIPAA Compliant

HIPAA, the Health Insurance Portability and Accountability Act, sets the standard for protecting the security and privacy of protected health information (PHI). PHI includes a very wide set of personally identifiable health and health-related data.

ISO/IEC 27001:2013 Certified

ISO27001 specifies the requirements for establishing, implementing, maintaining and improving a rigorous security program, which includes the development and implementation of an Information Security Management System (ISMS). The ISMS defines how Intelex manages security in a holistic and comprehensive manner.

PIPEDA Compliant

The Personal Information Protection and Electronic Documents Act (PIPEDA) is a Canadian federal law that applies to the collection, use, and disclosure of personal information in the course of commercial activities in all Canadian. PIPEDA also applies to international and interprovincial transfers of personal information.

STAR Self-Assessment

Cloud Security Alliance (CSA) is a not-for-profit organization with a mission to promote the use of best practices for providing security assurance within Cloud Computing, and to provide education on the uses of Cloud Computing to help secure all other forms of computing. Intelex has completed the CSA STAR Self-Assessment.

Intelex PSIRT

PSIRT (Product Security Incident Response Team) is a dedicated team responsible for managing and responding to security vulnerabilities and incidents related to a company's products. The purpose of PSIRT is to provide an understanding of the security response controls established to handle vulnerabilities and incidents effectively. The team's activities include vulnerability identification, risk assessment, remediation, and stakeholder communication.

TX-RAMP Certification

TX-RAMP (Texas Risk and Authorization Management Program): TX-RAMP is a state-mandated program responsible for ensuring that cloud computing services used by Texas state agencies adhere to stringent security and privacy standards. It sets forth a comprehensive framework for evaluating and certifying cloud service providers to ensure they can effectively protect sensitive state data. The program involves collaboration between state agencies and cloud service providers to continuously improve security measures and maintain compliance with state regulations. TX-RAMP certification provides a robust assurance that cloud services meet the necessary requirements to safeguard data, making it a critical component for state agencies in managing their IT infrastructure securely.