Compliance

SSAE 18, SOC 1, Type 2

US Signal is independently audited to meet SSAE 18, SOC 1, Type 2.

SOC 2, Type 2

US Signal has completed the SOC 2, Type 2 attestation, providing third-party assurance to customers that we have the appropriate internal controls and operational procedures in place to protect customer data. 

HIPAA/HITECH

US Signal is audited for HIPAA compliance annually by an independent third-party auditor, and will sign a Business Associate Agreement (BAA).

PCI-DSS

US Signal is independently audited to meet standard secure data hosting and processing practices for card holder data.

FBI CJIS

US Signal is self-certified for FBI Criminal Justice Information System Security Policy (CJIS) compliance. This enables us to provide services to law enforcement agencies at the local, state, and federal level.

GDPR Privacy Shield

US Signal is certified under Privacy Shield and GDPR — compliant for the transfer of European Union subject data to better support customers with international business needs.

International Traffic in Arms Regulations (ITAR)

US Signal is compliant with the International Traffic in Arms Regulations (ITAR) and maintains self-certification with the obligations and requirements of the regulation.

In addition, US Signal:

• Will provide audit documentation and other assistance as appropriate
• Has an on-staff compliance officer and executive security team
• Maintains a full Governance, Risk, and Compliance (GRC) program
• Employs a risk-based BC/DR plan and an Incident Response plan with table top tests performed annually
• Conducts regular employee IT security training 
• Has a Vendor Due Diligence program