Compliance Matters: Enlist a UC provider with the latest SOC 2/3 and HIPAA requirements

September 22, 2022 Matthew Marion 3 min

Following industry regulations and compliance standards is table stakes for most companies. That’s why Windstream Enterprise enables HIPAA and SOC 2/3 compliant UC solutions to all customers, across all industries.

The benefits of cloud-based unified communications solutions are clear and essential to providing a superior customer experience in an increasingly competitive industry. However, when considering the large amount of sensitive information that can be stored on company systems like phones, voicemail, call recordings, chat and additional collaboration tools, enlisting a solutions provider that has proper security controls in place is more important than ever.

Cloud-enabled UC solutions that achieve regulatory compliance can confidently indicate that they have met specific standards that are required by certain industry-accepted regulatory bodies.

Keeping up with compliance

Most recently, Windstream Enterprise completed its annual compliance audit for OfficeSuite UC and returned a clean compliance for HIPAA, SOC 2 and SOC 3 attestations. This is the fourth year in a row OfficeSuite UC and Contact Center Services remain in the certification. What’s more? This 2022 compliance audit included the new product launches of OfficeSuite Live and Secure eFax.

A breakdown of HIPAA and SOC requirements

Specific compliance requirements vary by industry and country. For example, certain industries with strong compliance oversight—such as financial services and healthcare—must be treated with particular care, as well as other sectors where issues like data protection, cybersecurity and consumer privacy are critical to business continuity and compliant operations.

By completing HIPAA and SOC requirements, we’ve taken a vertical approach to protecting businesses and their customers in the following manner:

  • Health Insurance Portability and Accountability Act (HIPAA) is a federal law that requires healthcare organizations to defend the integrity and security of protected health information, including protection against unauthorized use or disclosure of confidential information. While Windstream Enterprise is not directly required to be a HIPAA-compliant entity, we take our healthcare customers’ adherence to these regulations very seriously.
  • SOC is a combination of reports that focuses on internal controls at a service organization. The SOC 2 Report focuses on a business’s non-financial reporting controls as they relate to the security, availability, processing integrity, confidentiality and privacy of a system. SOC compliance is extremely valuable in the financial services industry, particularly during this age and time when cybersecurity attacks are rampant.

Organizations that are faced with compliance requirements around sensitive data can leverage HIPAA and SOC compliances as part of their compliance strategy. These reports will be very impactful for the healthcare and financial services verticals.

While these reports by themselves are not everything a customer needs to demonstrate compliance, they are an important part of the process and a key factor when selecting a service provider.

Rest assured; WE has got you covered

By following the laws and regulations relevant to its business operations, a business can prove its integrity and reliability—both of which can create greater trust among customers and partners and strengthen its competitive position. In all, these annual audits are a demonstration of Windstream Enterprise’s commitment to keeping customer data secure.

Windstream Enterprise offers HIPAA and SOC 2/3 compliant UC solutions to all our customers, across all industries.

Learn more

Key takeaway

Upon selecting a unified communications provider, be sure they are embracing the proper HIPAA and SOC 2/3 security standards as part of their current and ongoing strategy.

OfficeSuite Live Updates: Empower remote collaboration at a competitive price