Your data is safe with us.
In today’s day in age, employers, administrators, and advisors need to work with and trust partners who invest heavily in maintaining the highest levels of security.
TPA Stream’s secure cloud is HIPAA-compliant, and SOC 2 Type II certified. All data is encrypted both in transit and at rest. All employees go through comprehensive background checks, and our internal processes are regularly monitored and audited.
Data Encryption In Transit and At Rest
TPA Stream services support the latest recommended secure cipher suites and protocols to encrypt all traffic in transit. Customer Data is encrypted at rest.
We monitor the changing cryptographic landscape closely and work promptly to upgrade the service to respond to new cryptographic weaknesses as they are discovered and implement best practices as they evolve. For encryption in transit, we do this while also balancing the need for compatibility for older clients.
External Security Audits
We contract with respected external security firms who perform regular audits of TPA Stream services to verify that our security practices are sound and to monitor TPA Stream services for new vulnerabilities discovered by the security research community. In addition to periodic and targeted audits of TPA Stream services and features, we also employ the use of automated security scanning of our platform.
HIPAA Compliant
Our secure cloud is HIPAA compliant and we adopt internal procedures to keep your data safe and confidential. Your information will never be shared with anyone without your approval.
SOC 2 Type II Compliant
TPA Stream is SOC 2 Type II compliant and a copy of TPA Stream’s most recent report is available upon request. SOC 2 Type II is the leading security requirement to manage and store customer data based on five Trust Services Criteria (TSC): security, availability, processing integrity, confidentiality, and privacy.
Learn More
Complete the lead form to learn more about our company or any of our services. We’d love to hear from you.