A culture that’s compliant to the core

At Otava, compliance and security are practices that are natively baked into our people, processes and technologies, not bolted on afterwards. Our defense-in-depth-approach encompasses administrative, physical and technical safeguards to protect your data in not one but three ways. We offer a whole host of compliant solutions that keep mission-critical data and systems safe and protected.

HIPPA compliance

Our safeguards follow the OCR HIPAA Audit Protocol outlined by the Department of Health and Human Services Office of Civil Rights. Don’t take chances with anything less to reduce your risk and keep PHI safe.

PCI compliance

We undergo PCI DSS Level 1 auditing annually to ensure cardholder data remains protected. Need proof? Consult our audit report or VISA list to see for yourself. Ensure you are protecting consumer payment information against rising cybersecurity threats.

SOC 1 & 2 & 3 compliance

We’re audited against both the SSAE 16/SOC 1 and SOC 2 to assess our controls protecting sensitive data. If you have to answer to financial reporting regulations, do your business partners share complete documentation of compliance with Sarbanes-Oxley requirements? We do. We’re cool like that.

ISO 27001 compliance

Our entire team from the CEO on down is on your side when it comes to information security. We exceed expectations in meeting the 14 controls that comprise ISO 27001.

EU-US Privacy Shield compliance

Privacy is paramount. We comply with the European Privacy Shield framework regarding the collection, use, and retention of personal information. Protecting sensitive information of any kind is critical to maintain trust for any business with an online presence. Make sure your company and customers are protected by adequate safeguards.

“The level of service across the board from Otava has been nothing short of exceptional. It’s only getting better and better as the years go along. Whenever we pick up the phone, someone is immediately available to answer questions.” – Brian Allen CEO Progressive Data Services

  • This field is for validation purposes and should be left unchanged.