Compliance

We certify our services against the strictest standards and help you meet compliance requirements through our solutions.

Our secure systems help our customers to earn their users’ trust.

We do this in two ways:

By certifying our service against recognized certifications and regulations.

Helping our customers comply with their own industry security certifications and regulations.

PureID Service Certifications

PureID complies with a range of industry-standard certifications and authorizations.These include:

img.png

ISO 27001:2013

PureID has achieved ISO 27001:2013 certification, proving our expertise in securely managing information technology systems.

PureID’s ISO 27001:2013 certification is available here.

img.png

SOC 2 Type II

PureID maintains its authentication clusters on SOC 2 Type II certified cloud infrastructure provided by multiple cloud vendors.

Customers can access the audit report on support@pureid.com. Prospects can check various public cloud infrastructure leveraged by PureID and their certifications. Digital Ocean, Azure  and Google Cloud Platform

img.png

CSA STAR

To demonstrate our commitment to security of sensitive data, we earned the Cloud Security Alliance (CSA) Security, Trust, & Assurance Registry (STAR) Level 1 Attestation

To learn more about CSA STAR, click here. To view PureID’s CSA attestation, click here.

Helping you meet your compliance requirements

While PureID can’t solve every regulatory challenge, the PureID Cloud Service can help you work in accordance with the following compliance requirements:

img.png

HIPAA

PureID’s passwordless authentication process is risk free and reliable to securely access protected health information (PHI) and achieve HIPAA Compliance for the authentication process.

More Information

img.png

PCI-DSS 3.2

PureID Authentication service qualifies as a compliant multi-factor solution under current PCI-DSS requirements. This enables customers to use PureID as a supporting system for PCI compliance.

More Information

img.png

GDPR

PureID is registered with the Information Commissioner’s to declare use of user’s personal information to comply with GDPR directions. PureID’s authentication process removes the risk of personal and sensitive data breach and makes it almost GDPR exempt.

More Information