ClicData’s Commitment to Security and Privacy with Latest Certifications

Table of Contents

    ClicData is dedicated to handle all data with the utmost security and privacy. As such, we are pleased to announce that we successfully renewed our key certifications including GDPR, ISO 27001, SOC 2 Type 2, and HIPAA in July 2024. In addition, we are excited to share that we have now added CCPA certification to our robust portfolio of compliance standards.

    Achieving and maintaining the highest security standards is not just a goal but a core part of our business philosophy. This dedication is reflected in our continuous efforts to implement technological solutions and comprehensive staff training programs focused on data security.

    Understanding Our Certifications

    To provide a clearer picture of what our certifications entail and the rigorous standards we uphold, we have outlined the key aspects of each certification, the type of data they cover, and the procedures we follow to comply with their requirements.

    gdpr

    GDPR (General Data Protection Regulation)

    Coverage: Personal data of individuals within the European Union.

    Procedures:

    • Data Protection Impact Assessments (DPIAs): Regular assessments to identify and mitigate risks to data privacy.
    • Data Subject Rights: Ensuring individuals can exercise their rights to access, rectify, erase, and restrict the processing of their data.
    • Data Breach Notification: Implementing protocols to detect, report, and investigate data breaches promptly.
    • Data Minimization and Storage Limitation: Collecting only the necessary data and retaining it only for as long as needed for the specified purpose.
    iso 27001 certification clicdata

    ISO 27001 (Information Security Management)

    Coverage: Information Security Management System (ISMS) across the entire organization.

    Procedures:

    • Risk Management: Identifying, evaluating, and mitigating risks to information security through a structured risk management framework.
    • Access Control: Implementing strict access controls to ensure that only authorized personnel can access sensitive information.
    • Incident Management: Establishing a systematic approach to managing and resolving security incidents.
    • Continuous Improvement: Regularly reviewing and improving security policies and procedures to adapt to new threats and vulnerabilities.
    aicpa soc 2 compliance clicdata

    SOC 2 Type 2 (System and Organization Controls)

    Coverage: Operational effectiveness of security controls over a specified period.

    Procedures:

    • Security Policies: Developing and enforcing comprehensive security policies and procedures.
    • Monitoring and Reporting: Continuous monitoring of security controls and regular reporting on their effectiveness.
    • Audit Trails: Maintaining detailed records of all security-related activities to provide a clear audit trail.
    • Employee Training: Conducting ongoing training programs to ensure that all staff are aware of security policies and best practices.
    clicdata_support_trust-center-HIPAA-certified

    HIPAA (Health Insurance Portability and Accountability Act)

    Coverage: Protection of sensitive patient health information.

    Procedures:

    • Physical and Technical Safeguards: Implementing physical and technical measures to protect electronic protected health information (ePHI).
    • Privacy Rule Compliance: Ensuring the confidentiality, integrity, and availability of ePHI by adhering to the HIPAA Privacy Rule.
    • Security Rule Compliance: Implementing administrative, physical, and technical safeguards to ensure the security of ePHI.
    • Breach Notification Rule Compliance: Ensuring that any breaches of unsecured ePHI are promptly reported to affected individuals and the Department of Health and Human Services (HHS).
    ccpa compliance clicdata

    CCPA (California Consumer Privacy Act)

    Coverage: Personal data of residents of California.

    Procedures:

    • Consumer Rights: Ensuring California residents can exercise their rights to know, access, delete, and opt-out of the sale of their personal information.
    • Data Transparency: Providing clear and transparent information about data collection, use, and sharing practices.
    • Data Security Measures: Implementing robust security measures to protect personal information from unauthorized access, disclosure, or destruction.
    • Vendor Management: Ensuring that third-party vendors comply with CCPA requirements through comprehensive contracts and regular assessments.

    Our Commitment to Compliance

    At ClicData, we have established a culture of compliance that permeates every aspect of our operations. Our dedicated compliance team works tirelessly to ensure that all our policies and procedures align with the stringent requirements of these certifications.

    We have always been process and security focused and these compliance and regulatory programs allow us to be structured in our approach of continuous improvement. By maintaining and expanding our certifications, despite the high effort and cost of maintenance and audits, we reinforce our commitment to providing our customers with the confidence and assurance that their data is protected to the highest standards. We are proud of our team’s dedication to achieving these certifications and their unwavering commitment to data privacy and security.

    Telmo Silva, CEO of ClicData.

    This involves:

    • Regular Audits: Engaging third-party auditors to conduct thorough assessments of our security and privacy practices.
    • Continuous Training: Providing ongoing training for all employees to stay current with the latest regulatory requirements and best practices.
    • Policy Updates: Regularly reviewing and updating our policies to reflect changes in regulations and industry standards.
    • Customer Assurance: Offering transparency to our customers about our compliance efforts and the measures we take to protect their data.

    By adhering to these rigorous standards, we provide our customers with the confidence and peace of mind that their data is in safe hands. Thank you for your continued trust in ClicData. We are committed to maintaining the highest level of security and privacy for your data.

    For more information about our security practices and certifications, please visit our Trust Center or contact us.

    Rigorous Standards and Continuous Improvement

    Our commitment to security is validated through regular third-party security and privacy audits. These audits are essential in ensuring that we meet and exceed the stringent requirements set by international and industry-specific standards. By renewing our GDPR, ISO 27001, 27701, SOC 2 Type 2, and HIPAA certifications, we affirm our dedication to protecting sensitive information and maintaining a secure environment for all our customers.

    The addition of the CCPA (California Consumer Privacy Act) certification marks a significant milestone for ClicData. The CCPA is one of the most stringent privacy laws in the United States, aimed at enhancing privacy rights and consumer protection for residents of California. By achieving CCPA compliance, we demonstrate our proactive approach in adapting to evolving privacy regulations and expanding our commitment to data protection on a global scale.

    Looking Ahead

    As we continue to grow and evolve, we remain steadfast in our commitment to security and privacy. We will keep up with the latest regulations and industry standards to ensure that our customers benefit from the highest level of protection for their data. We are now looking at additional compliance programs such as the PIPEDA, UK GDPR, LGPD, and FedRamp as our next targets. We are also looking towards implementing self-regulated programs such as as ISO 26000 as they relate to Social Responsibility, a topic that impacts everyone.

    Thank you for your continued trust in ClicData. We look forward to serving you with the same level of excellence and dedication that has become synonymous with our brand.