Security built into everything we ship
Protecting sensitive data is core to how we build. Our platforms are designed with HIPAA-aligned privacy and security controls to safeguard your data at every layer.
Encryption
- AES-256 encryption for all data at rest
- TLS 1.2+ encryption for all data in transit
- Encrypted database backups
- Secure key management with regular rotation
Access Control
- Role-based access controls (RBAC)
- Multi-factor authentication (MFA)
- Single sign-on (SSO) support
- Automatic session timeouts
- Principle of least privilege enforcement
Audit & Monitoring
- Immutable audit logging for all data access
- Real-time security event monitoring
- Automated anomaly detection
- Comprehensive activity trails for compliance reporting
Infrastructure
- Hosted on enterprise-grade cloud infrastructure
- Geographically redundant data centers
- Automated failover and disaster recovery
- Regular infrastructure patching and updates
Application Security
- Secure software development lifecycle (SDLC)
- Regular vulnerability assessments
- Penetration testing by third-party specialists
- Dependency scanning and management
- Web Application Firewall (WAF) protection
Incident Response
- Documented incident response plan
- Breach notification within HIPAA-required timeframes
- Post-incident analysis and remediation
- Regular tabletop exercises and plan testing
Compliance & certifications
HIPAA Alignment
Our platforms are designed in alignment with HIPAA Privacy and Security Rules. We offer Business Associate Agreements (BAAs) to all eligible customers.
Learn about our BAA →Data Privacy
We are committed to transparency in how we collect, use, and protect your information. Our practices are documented in our Privacy Policy.
View Privacy Policy →Independent Assessment
We recommend independent third-party assessment for formal compliance certification, and we are happy to support security due-diligence questionnaires.
Responsible disclosure
If you believe you have discovered a security vulnerability, please report it responsibly. We appreciate the efforts of security researchers and will work with you to address verified issues promptly.
Report a vulnerability:
Email: customer@aurinsolutions.com
Please include a detailed description of the vulnerability and steps to reproduce.