We are thrilled to announce a significant milestone for Tuned. We are now officially recognized as SOC2 Type 1 certified. This certification marks a crucial step in our commitment to providing the world's first-ever hearing benefit plan for employers. Tuned has always prioritized the well-being of our users, and achieving SOC2 compliance underscores our dedication to the highest standards of data security.

In the dynamic landscape of healthcare, where the digital transformation is rapidly advancing, data breaches pose an increasing threat. Recent statistics from HIPAA Journal reveal a staggering surge in healthcare data breaches, with millions of records compromised each year. The healthcare sector is a prime target for cybercriminals due to the vast amount of sensitive information being transmitted and stored every day. At Tuned, we readily grasp the urgency of cybersecurity challenges in healthcare. Securing SOC2 Type 1 certification is our inaugural move in actively defending against potential threats, signaling the launch of a robust strategy to safeguard our users' sensitive information.

What does SOC2 Certification mean?

The SOC2 framework is specifically designed for service providers storing customer data in the cloud, and achieving Type 1 certification means that our security controls are not only in place but also validated by an independent third party. This is especially crucial for a healthcare-focused company like Tuned, where the confidentiality, integrity, and availability of sensitive information are absolutely paramount. Our clients and members can rest assured that their data, including personally identifiable information and personal health information, is handled with the utmost care and protected against evolving cybersecurity risks. This SOC2 Type 1 certification represents our ongoing commitment to maintaining the highest standards of security in an ever-changing digital landscape. As we continue to innovate and offer the world’s first-ever comprehensive hearing health benefit for employers, employers and members alike can trust that their data is in safe hands.

What's Next for Tuned: Strengthening Our Security Commitment

The attainment of SOC2 Type 1 certification is just the beginning of Tuned's relentless pursuit of data security excellence. We are pleased to share that we are currently in the process of securing ISO 27001 and SOC2 Type 2 certifications, both slated for completion by the end of Q1 2024.

ISO 27001, the gold standard for Information Security Management Systems, will fortify our security infrastructure, ensuring a comprehensive approach to safeguarding sensitive data. Simultaneously, the SOC2 Type 2 certification will extend the evaluation period, providing a more in-depth assessment of our security protocols over time. By achieving these certifications, Tuned remains steadfast in its commitment to setting industry-leading benchmarks for data security in the healthcare sector. Stay tuned for more updates as we continue to elevate the standards of security and reliability in our pursuit of a safer healthcare experience.