Probax Compliance
Enterprise-grade security and compliance for every type of workload

HIPAA Compliance

Compliancy Group has awarded Probax with its HIPAA Seal of Compliance after an involved verification process to ensure full compliance with the following regulations:

  • HIPAA Privacy Rule
  • HIPAA Security Rule
  • HITECH Rule
  • Omnibus Rule

As a result of the completion of the HIPAA compliance process, Probax has earned the Compliancy Group HIPAA Seal of Compliance as a demonstration of its commitment to industry leading best practices for security and privacy of protected health information as required under the Health Insurance Portability and Accountability Act of 1996 (HIPAA)

HIPAA-Seal-of-Compliance-Verification

SOC 2 Compliance

Probax uses Drata’s automation platform to continuously monitor 100+ internal security controls across the organization against the highest possible standards. Automated alerts and evidence collection allows Probax to confidently prove its security and compliance posture any day of the year, while fostering a security-first mindset and culture of compliance across the organization.

soc2-light-resize-trans-2

PCI DSS Compliance

The Payment Card Industry Data Security Standard (PCI DSS) refers to payment security standards that ensure all sellers safely and securely accept, store, process, and transmit cardholder data (also known as your customers’ credit card information) during a credit card transaction.

Any merchant with a merchant ID that accepts payment cards must follow these PCI-compliance regulations to protect against data breaches. The requirements range from establishing data security policies for your business and employees to removing card data from your processing system and payment terminals.

pci-light-resize-trans-2

General Data Protection Regulation (GDPR) Compliance

The General Data Protection Regulation (GDPR) is a data privacy and security regulation passed by the European Union (EU) in May 2018. The GDPR intends to strengthen and unify data protection for all individuals within the EU and address the export of personal data outside of the EU and United Kingdom (UK).

Probax uses Drata’s automation platform to continuously monitor internal security controls across the organization against the GDPR regulatory requirements. 

gdpr-probax

Information Technology Infrastructure Library (ITIL) Compliance

ITIL, formally an acronym for Information Technology Infrastructure Library, is a set of detailed practices for IT service management (ITSM) that focuses on aligning IT services with the needs of business. ITIL requires extensive documentation, certified staff, and alignments within organizations to achieve successful outcomes. Probax maintains ITIL certified staff to ensure proper IT Service alignment, optimizations and operates under the most recent version.

ITIL-1

Australian Privacy Principles

Very similar to the need to adhere to the EU GDPR requirements, Australian law requires that personal data be managed and protected in accordance with the Australian Privacy Principles (APPs) noted within the Privacy Act 1988. Probax maintains strict adherence to data sovereignty and privacy requirements for all Australian operations.

Probax also remains compliant with the The Privacy Amendment (Notifiable Data Breaches) Act 2017, also known as Notifiable Data Breach (NDB) legislation, which is an amendment to the Privacy Act 1988 that came into effect on February 22, 2018.

APP

Singapore Personal Data Protection Act

For customers operating within Singapore, Probax maintains and adheres to all privacy requirements outlined under the Personal Data Protection Act (PDPA) of 2012 for citizens and legal operations within the Singapore region. Protection of individuals rights is paramount to proper data sovereignty.

PDPA