Hermes Health - Trust Center

Compliance and Security Portal for Hermes Health.

Compliance overview

An overview of the compliance status of Hermes Health across common frameworks like SOC 2, ISO 27001, ISO 9001, and GDPR.

HIPAA

In progress

An up to date list of policies published internally by Hermes Health.

Remote Access & BYOD

Secure Configuration & Hardening

Information Sharing & Transfer

Policy Management & Exception Handling

Change & Release Management

Vulnerability & Patch Management

Privacy & Data-Subject Rights

Sanctions & Disciplinary

Retention & Secure Disposal

Encryption & Crypto Controls

Access Control & Least Privilege

Logging, Monitoring & Audit

Backup, Business Continuity & Disaster Recovery

Incident Response & Breach Notification

Information Security & Privacy Governance

An up to date list of controls published internally by Hermes Health.

Incident Response

Device List

Sanitized Inputs

Secure Secrets

Public Policies

Secure Code

Code Changes

App Availability

Employee Descriptions

Secure Devices

2FA

TLS / HTTPS

Contact Information

Diagramming

Planning

Employee Access

Employee Verification

Review Policies

Monitoring & Alerting