Keeping your health data secure
Data security is our top priority. We ensure that your company and member data is never shared, and that privacy is protected. So you can use our program with total confidence and peace-of-mind.
Enterprise-grade security
Our solution is HITRUST, SOC-2, and LegitScript certified and has earned the Gold Seal of Approval from The Joint Commission.
Substance use data protection
Pelago meets all substance use disorder data protection criteria and legal requirements across the US and EU, including HIPAA, 42 CFR Part 2, CCPA, and GDPR.
HIPAA
COMPLIANT
CFR Part 2
COMPLIANT
CCPA
COMPLIANT
GDPR
COMPLIANT
privacy
Protecting your privacy, and that of your members
Our secure solution stores and processes all PHI and PII in the US, with strict audited access controls to ensure the protection of our members’ data. The Pelago system meets the extensive security and privacy requirements set out in the HITRUST CSF.
Industry standard encryption protocols at rest and in transit
Cloud based encrypted and segregated client data storage
Employee access management and endpoint protection
Third party penetration testing and information security program audit