Security

Security and Privacy are more than just table stakes, they’re a true differentiator. Particle is dedicated to achieving two of the highest security credentials in healthcare and tech.

General Compliance

Our platform was designed to be secure and HIPAA compliant.

• Data at rest is encrypted using Advanced Encryption Standard (AES)
• Google Cloud provides cryptographic authentication and authorization for all inter-service communications
• Mutual TLS for authenticating outgoing Requests
• All PHI is de-identified when used for internal analytics

For more information on our information security practices please contact security@particlehealth.com.

SOC 2
Particle Health is SOC-2 Type 2 certified. SOC 2 compliance is a component of the American Institute of CPAs (AICPA)’s Service Organization Control reporting platform. Its goal is to enforce that systems are set up to ensure security, availability, processing integrity, confidentiality, and privacy of customer data. SOC 2 is both a technical audit and a requirement that comprehensive information security policies and procedures be written and followed. SOC 2 is an auditing procedure that ensures your service providers securely manage your data to protect the interests of your organization and the privacy of its clients. For security-conscious businesses, SOC 2 compliance is a minimal requirement when considering a SaaS provider.

How to report a vulnerability?

If you believe you found a security vulnerability, please report it here.