Security and Compliance
The Redde ecosystem complies with all major regulatory requirements
All Solutions

Keeping our systems and client partners secure and compliant is our paramount concern. This means not only following healthcare specific regulations, but also requirements and best practices from the cloud-computing, finance, and communication industries as well. The Redde PFX Platform was built from the ground up with all those regulatory and industry requirements in mind to help protect you and your patients.

Security

While many of our security methods, tools, and protocols are proprietary and/or not advisable to post here, we can say that we have the following in place:

  • Automated and manual security assessments
  • Active behavioral analysis
  • In transit data encryption
  • At rest data encryption
  • Active-page security validation
  • Detection protocols and methodologies
  • Routine 3rd party penetration testing
  • Data segregation
  • Network Monitoring
  • Audit logging
  • Data transfer tracking and reporting
  • Payment tokenization
  • 256-bit password encryption with cryptographic salt
  • Robust Active User Permissions
  • Continuous payment fraud and risk monitoring
Compliance

While many of our security methods, tools, and protocols are proprietary and/or not advisable to post here, we can say that we have the following in place:

HIPAA & HITECH

The Redde ecosystem is compliant with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), as well as the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009.

www.hhs.gov
TCPA

The Redde ecosystem is compliant with the Telephone Consumer Protection Act of 1991.

www.fcc.gov
PCI-DSS

The Redde ecosystem is certified with the Payment Card Industry Data Security Standard (PCI DSS).

www.pcisecuritystandards.org

For additional information, please email us at [email protected]

Copyright 2024 Wixcorp