Pingmd Announces Achieving SOC 2 Type 2 Certification Assurance


CHICAGO--()--Pingmd announced the successful completion of a Service Organization Controls (SOC) 2 Type II engagement covering the trust principles of Security, Confidentiality, and Availability, during the HIMSS Annual Conference and Exhibition, McCormick Place, April 12 - 16. Booth 7356.

On April 10, 2015, Assurance Adviser Risk Compliance (“AARC-360”) issued an unqualified opinion that provides Pingmd clients assurance that security and availability controls are implemented and operating effectively. With healthcare organizations increasingly exposed to breaches and regulatory enforcement under HIPAA, the SOC 2 provides customers with assurance that companies, such as pingmd, invest in appropriate security measures to protect patient information. Pingmd investments include encryption for data at rest, application firewalls, on-going vulnerability scans and experienced security resources.

Gopal Chopra, CEO and co-founder of Pingmd commented that, "Security of client data is one of the biggest challenges mobile healthcare will face in 2015. High-profile security breaches, and a growing BYOD mobile market, are forcing hospitals and clinics to rethink the way they communicate with colleagues, patients and affiliates. Pingmd delivers the most efficient and effective way to manage patient care and grow in a competitive healthcare services market, while providing the peace of mind of a simple to use and secure work environment.

Headquartered in New York City, pingmd, Inc. is a cloud based secure communication platform that provides messaging, voice and virtual visits; integration to medical records; population health patient engagement; eVisit technology and data and analytics of communication and care management.

About SOC 2 Type 2

According to the American Institute of Certified Public Accountants (AICPA), the governing professional organization for SOC 2 reports, these reports are intended to meet the needs of a broad range of users that need to understand internal control at an organization. These reports are intended for use by stakeholders (e.g., customers, regulators, business partners, suppliers, directors) of the service organization that have a thorough understanding of the service organization and its internal controls. These reports can form an important part of stakeholders:

Oversight of the organization

Vendor management program

Internal corporate governance and risk management processes

Regulatory oversight

For more information about SOC 2 audits, see the American Institute of Certified Public Accountants website.


for Pingmd
Christine K. Soderbergh, 310-394-7763