Security and Technology
We value and protect your data as if it was our own.
The protection of your data is a primary design consideration for the company and team member operations. As a Microsoft Gold-Certified Partner, we have access to a leading-edge technology stack that offers a significant level of protection, scale, and availability.
Omatic has established a security culture for all team members that spans the entire employee life cycle including running background checks on all team members and providing security and HIPAA training during onboarding and ongoing through their career.
Our executive and extended leadership teams are committed to assessing, monitoring, and managing risk for security and our vendors through a formalized risk management framework. Our security and privacy cross-functional team is dedicated to maintaining Omatic’s security posture, practices, policies, and procedures
Security is an integral part of our processes, not just an annual event, it is embedded into our day to day operations. Our program includes:
· Proactive vulnerability management & prompt resolution
· Real-time monitoring with the assumption that all network traffic is untrusted
· Robust incident management
· Change management for both code and infrastructure changes that embraces separation of duties
· Tested and validated business continuity & disaster recovery
Technology is a central part in our commitment to security.
Omatic Cloud leverages Microsoft’s Azure cloud services. Since we use Azure, Omatic operates under a shared security responsibility model, where Microsoft Azure handles the security of the underlying cloud infrastructure and Omatic secures the platform deployed in Azure.
Our technology enables:
· High Availability and scalability of services using multiple regions
· Your data to stay in your Country
· Multifactor authentication for your organization using Auth0
· Secure encryption of data in transit and when stored
Our Third Party Certifications:
Many of our customers are subject to HIPAA and can use the Omatic Cloud by executing a Business Associate Agreement (BAA) with Omatic. We ensure that the Omatic Cloud meets the requirements under HIPAA and align with our SOC 2 report.
We’re committed to handling our user and partner data securely. As of 2021, Omatic received its SOC 2 Type II certification. The SOC 2 (System and Organization Controls) Type II report is a globally recognized security measure that rates a service provider’s compliance with security, availability, and confidentiality best practices.
For these reasons, many social good organizations across all Mission Focuses put their trust in Omatic to help them leverage the best of technology and security so they can easily access current, clean and complete data driving insight to empower and amplify their missions around the world.
For a more robust look at Security and Technology, download our COO/CTO’s white paper here:
