MSP Recovery’s data transfer procedures comply fully with the HIPAA Security Rule. HIPAA requires encryption of Protected Health Information (“PHI”) whenever it is reasonable and appropriate to do so. For any individuals/ entities transferring any PHI or other data, please be advised that we use a Secure File Transfer Protocol (“SFTP”) to ensure your data remains secure and HIPAA compliant while it is being transferred. The SFTP will encrypt commands and data, preventing passwords and sensitive information from being transmitted in the clear. In order to ensure that the data remains secure and HIPAA compliant, we have implemented the following procedures:
MSP Recovery is compliant in the trust and service principles in System Organization Controls (SOC) 2.