Certified by Trusted Organizations

Zinc is committed to earning and sustaining trust for enterprise users. We have proactively achieved compliance across a variety of globally-known and trusted security standards.

Zinc Certifications

 

SOC 2 Type II

Zinc has completed a SOC 2 Type II audit covering policies and procedures that safeguard customer data and how well those controls are operating. The SOC 2 report covers all internal controls as well as the use of third-party service providers. This report is issued by an independent, certified auditor and covers the areas of Security, Confidentiality, Processing Integrity and Availability.

 

ISO 27001

Zinc’s data centers are compliant with the requirements as stated in the standard ISO 27001, which is a specification for information security management system (ISMS). It provides a guideline of the policies and controls that an organization has in place to secure data.

 

HIPAA

Zinc has fulfilled all HIPAA safeguard requirements and is compliant as a Business Associate. HIPAA is the acronym for the Health Insurance Portability and Accountability Act that was passed by Congress in 1996. It is a federal mandate that requires specific security and privacy protections for Protected Health Information (PHI).

 

TRUSTe

Zinc’s Privacy Program has been TRUSTe Certified. This means that Zinc’s practices and policies have been reviewed by TRUSTe for compliance with its requirements regarding transparency, accountability and choice regarding the collection and use of personal information.

 

FIPS 140-2

Zinc complies with The Federal Information Processing (FIPS) Standard 140-2, a joint effort by the National Institute of Standards and Technology in the United States and the Communications Security Establishment Canada under the Canadian government. By adhering to FIPS 140-2, Zinc ensures cryptographic modules are used to protect sensitive government data.