NBS makes every effort to safeguard our customers’ data through a number of internal controls and procedures. OSG has successfully completed all of its SSAE 16 (formerly SAS 70) audits, developed by the American Institute of Certified Public Accountants (AICPA). A third-party auditor presents the certification based on an in-depth examination of day-to-day operations and determines if the service organization performs as documented. NBS first underwent this process in 2008. This classification recognizes NBS as a provider of reliable services and solutions and helps assure NBS customers that the company is in compliance with industry-accepted vulnerability standards in order to create as secure of an environment as possible for customers. NBS is SSAE 16 certified.
Additional information on SSAE 16 and Service Organization Control reports can be viewed at the AICPA's new web page (www.aicpa.org/soc).
The HIPAA Privacy Rule provides federal protections for individually identifiable health information held by covered entities and their business associates and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so that it permits the disclosure of health information needed for patient care and other important purposes.