Sitefinity Cloud is SOC2-certified and HIPAA-compliant. The platform provides built-in tools and workflows that enable organizations to address GDPR and HIPAA requirements and other data privacy laws.
SOC2 and HIPAA-compliance reports can be downloaded from the Progress Security Center.
Sitefinity helps safeguard Personally Identifiable Information (PII) and Protected Health Information (PHI) by utilizing field mapping, PII/PHI removal workflows and data obfuscation during database restore to a non-production environment to help organizations maintain compliance and ensure personal and data privacy.
The Sitefinity Cloud documentation summarizes the regulatory certifications that Progress Software has been awarded as a company and the ones that Progress Sitefinity Cloud complies with as a product.
SOC 2 is an independent audit report that provides detailed information and assurance of the security, availability, integrity, confidentiality and privacy controls an organization has implemented in its products and internal workflows.
HIPAA is a federal law that requires the creation of standards to protect sensitive patient health information from being disclosed without the patient's consent or knowledge.