CallMiner's speech and customer engagement analytics solutions comply with SOC 2 Type II, FISMA, ISO 27001, HIPAA, and PCI standards, according to the results of an independent audit.
An independent audit by KirkpatrickPrice, a licensed CPA and PCI QSA firm, has verified that CallMiner's speech and customer engagement analytics solutions comply with SOC 2 Type II, FISMA, ISO 27001, HIPAA, and PCI standards.
The SOC 2 engagement is based on the AICPA's Trust Services Principles and focus on a service organization's non-financial reporting controls as they relate to security, availability, processing integrity, confidentiality, and privacy.
"CallMiner selected the security principle as the basis of their audit," said Joseph Kirkpatrick, managing partner at KirkpatrickPrice, in a statement. "CallMiner delivers trust-based services to their clients, and by communicating the results of this audit, their clients can be assured of their reliance on CallMiner's controls."
The independent audit also determined that all access controls to electronic protected health information (ePHI) stored on CallMiner systems complies with Health Insurance Portability and Accountability (HIPAA) requirements.
CallMiner also was certified for its information security control structure and compliance with ISO 27001. The review determined that CallMiner has implemented adequate administrative, physical, and technical controls to address security risks.
The audit also evaluated CallMiner's controls for storing and transmitting information from credit, debit, or other payment cards and verified that CallMiner remains PCI compliant.
"The security of our customers' data is our highest priority. Verifying regularly and rigorously that our security controls and processes continue to exceed compliance standards is just as important to our business as it is to our customers, especially with the growing adoption of analytics and increasing awareness of data security," said CallMiner's chief operating officer, Adam Walton, in a statement.