Skip to content
Security

Security built into everything we ship

Protecting sensitive data is core to how we build. Our platforms are designed with HIPAA-aligned privacy and security controls to safeguard your data at every layer.

Encryption

  • AES-256 encryption for all data at rest
  • TLS 1.2+ encryption for all data in transit
  • Encrypted database backups
  • Secure key management with regular rotation

Access Control

  • Role-based access controls (RBAC)
  • Multi-factor authentication (MFA)
  • Single sign-on (SSO) support
  • Automatic session timeouts
  • Principle of least privilege enforcement

Audit & Monitoring

  • Immutable audit logging for all data access
  • Real-time security event monitoring
  • Automated anomaly detection
  • Comprehensive activity trails for compliance reporting

Infrastructure

  • Hosted on enterprise-grade cloud infrastructure
  • Geographically redundant data centers
  • Automated failover and disaster recovery
  • Regular infrastructure patching and updates

Application Security

  • Secure software development lifecycle (SDLC)
  • Regular vulnerability assessments
  • Penetration testing by third-party specialists
  • Dependency scanning and management
  • Web Application Firewall (WAF) protection

Incident Response

  • Documented incident response plan
  • Breach notification within HIPAA-required timeframes
  • Post-incident analysis and remediation
  • Regular tabletop exercises and plan testing
Compliance

Compliance & certifications

HIPAA Alignment

Our platforms are designed in alignment with HIPAA Privacy and Security Rules. We offer Business Associate Agreements (BAAs) to all eligible customers.

Learn about our BAA →

Data Privacy

We are committed to transparency in how we collect, use, and protect your information. Our practices are documented in our Privacy Policy.

View Privacy Policy →

Independent Assessment

We recommend independent third-party assessment for formal compliance certification, and we are happy to support security due-diligence questionnaires.

Disclosure

Responsible disclosure

If you believe you have discovered a security vulnerability, please report it responsibly. We appreciate the efforts of security researchers and will work with you to address verified issues promptly.

Report a vulnerability:

Email: customer@aurinsolutions.com

Please include a detailed description of the vulnerability and steps to reproduce.