Capable Health Announces SOC 2 Type II Compliance Certification

Learn more about the Capable platform and how we keep patient data safe.

Capable Health Announces SOC 2 Type II Compliance Certification

What is SOC 2 Type II?

SOC (Systems and Organization Controls) 2 is an auditing procedure that ensures your service providers securely manage your data to protect the interests of your organization and the privacy of its users. SOC 2 is the gold standard for SaaS companies in proving their product is trustworthy. Achieving SOC 2 Type II certification is a critical milestone for Capable that demonstrates the investment we’ve put into building a safe and secure platform.

To obtain our audited SOC 2 Report, a third-party auditor reviewed our internal controls including policies, procedures and infrastructure regarding data security, firewall configurations, change management, logical access, backup and disaster recovery, and security incident response.

What data security means for patients 

A company that has achieved SOC 2 Type II certification has proven its system is designed to keep its clients’ sensitive data secure. 

Capable’s platform is mission-critical to our customers, powering healthcare delivery for their 

patients. It must be available and secure under any conditions, and data must be accurate, complete, and up-to-date. This certification provides independent verification of Capable’s claims and represents the depth of our commitment to building an enterprise-grade healthcare platform.

How is SOC 2 Type II certification different from HIPAA compliance?

HIPAA is a U.S. law that applies to healthcare providers, health plans, and healthcare clearinghouses, as well as their business associates. It sets forth requirements for the handling and protection of protected health information (PHI), including physical, technical, and administrative safeguards to ensure the confidentiality, integrity, and availability of PHI.

HIPAA and SOC 2 both deal with the protection of sensitive information. HIPAA specifically applies to the protection of personal health information, while SOC 2 applies to the security and privacy of any type of sensitive information that an organization may handle on behalf of its customers.

Both HIPAA and SOC 2 Type II are highly relevant for healthcare companies. They go hand-in-hand to comprehensively assert the safe and secure handling of PHI, and all sensitive data.

Learn more about how Capable keeps your patients’ data safe.

While SOC 2 compliance isn’t a requirement for SaaS and cloud computing vendors, its role in securing your data cannot be overstated. Customers should ensure the services they use have this certification. Using a SOC 2-certified platform assures patients’ data is secure. 

Now that Capable is officially certified, we will continue to undergo regular audits to ensure that we remain SOC 2-compliant. Learn how Capable is supercharging digital health solutions safely and securely. Schedule time with our team today.

What’s a Rich Text element?

The rich text element allows you to create and format headings, paragraphs, blockquotes, images, and video all in one place instead of having to add and format them individually. Just double-click and easily create content.

  • easily create content
  • easily create content

Static and dynamic content editing

A rich text element can be used with static or dynamic content. For static content, just drop it into any page and begin editing. For dynamic content, add a rich text field to any collection and then connect a rich text element to that field in the settings panel. Voila!

How to customize formatting for each rich text

Headings, paragraphs, blockquotes, figures, images, and figure captions can all be styled after a class is added to the rich text element using the "When inside of" nested selector system.

  • Headings, paragraphs,
  • Headings, paragraphs,

Learn more about how Capable can accelerate your digital health build.