Edifecs Information Security

We Build. We Innovate. We Secure

Your data is in safe hands with Edifecs.

Edifecs is committed to information security and security assurance. Our information security management program and control framework is based on HITRUST® CSF guidelines and supported by other industry best practices, standards, and regulatory requirements.

Our commitment to security is what allows us to fulfill our mission: helping our customers harness and use their data to build a better healthcare system.

Security Image Card 1

Our comprehensive protection strategy

Minimize high-cost, low-ROI implementations and maintenance

  • The Edifecs Comprehensive Protection Strategy incorporates the principle of “Secure by Design” from our Information Security Program, along with our dedication to Data Privacy and adherence to HITRUST® Regulatory Compliance standards.
  • Transparency is the cornerstone of our Comprehensive Protection Strategy. With HITRUST certification validating our systems and detailed insights into our software development life cycle, Edifecs has built trust through business transparency for over 18 years.
Security Image Card 2

Our vulnerability disclosure program

At Edifecs, we prioritize the security, integrity, and privacy of our products. We are dedicated to supporting the valuable contributions of researchers and partners who help enhance the security of our products and environments. If you believe you have discovered a security vulnerability, we encourage you to review our Vulnerability Disclosure Program Policy and submit your findings:

Submit Findings

Security Image Card 3

Our trust center

Visit the Edifecs Trust Center to learn more about our strong security controls, regulatory compliance, reliability, and high availability.

Visit Trust Center

Third-Party Security Assurance

Visit Our Scorecard

News & Insights

Value_Based_Arrangements_Edifecs_Press_Release
Edifecs update on the CrowdStrike Outage
Edifecs, like other organizations across the world, was impacted by the CrowdStrike outage that began late Thursday, July 18th, 2024. Our IT teams promptly began working to respond to the issue with the guidance of the CrowdStrike support team and have restored service levels back to normal.
Learn More  ❯
Value_Based_Arrangements_Edifecs_Press_Release
Edifecs Update on Spring4Shell Vulnerability
Edifecs is actively responding to CVE-2022-22965 - This vulnerability is a class manipulation vulnerability and is currently being discussed publicly as Spring4Shell or SpringShell.
Learn More  ❯
Value_Based_Arrangements_Edifecs_Press_Release
Edifecs Update On Apache Log4j Vulnerability
Response to Critical Vulnerability for CVE-2021-4428
Learn More  ❯
View All Resources