Security and Compliance

At InRule Technology, security is a top priority.

This focus fuels our adherence to recognized best practices to ensure our products and processes are designed to protect our customers’ information and retain their confidence, and that our people observe industry-leading InfoSec practices to ensure security throughout our development and delivery lifecycle.

Standards Compliance

                  InRule is SOC2 Type II compliant

SOC 2 Type II

Examination Period: November 1, 2020 – October 31, 2021

Platforms

InRule Decision Platform

xAI Workbench

Our completion of this exam and report means that our customers, even those working in the most highly regulated industries, can be assured of our robust security procedures. An essential demonstration of our commitment to security, SOC 2 Type II compliance means we protect our customers’ highly sensitive data and information, using rigorous standards, vetted by independent auditors.

Mapping to ISO 27001. For customers interested in understanding how SOC 2 is like ISO 27001, our report includes a table showing a mapping from SOC 2 controls to the ISO 27001 Annex A controls.

Mapping to DFARS (Using Applicable NIST 800-171 Security Revision 2 Requirements)”. For customers interested in understanding how SOC 2 controls map to NIST, our report also includes a table with relevant mappings.

Mapping to HITRUST. HITRUST CSF provides the structure, transparency, guidance and cross-references to authoritative sources organizations need to be certain of their data protection compliance. This report includes a mapping of HITRUST CSF to SOC 2 controls included in the report.

HIPAA

Platforms

InRule Decision Platform

xAI Workbench

Examination Period: November 1, 2020 – October 31, 2021

Independent auditors have examined suitability of the design and operating effectiveness of controls to meet the applicable requirements of 45 C.F.R. Sections 164.308 (Administrative Safeguards), 164.310 (Physical Safeguards), and 164.312 (Technical Safeguards) set forth in the U.S. Department of Health and Human Services’ (HHS) Health Information Portability and Accountability Act (HIPAA) (HIPAA Security Rule requirements).

Our completion of this audit and resultant report confirm our compliance with the rigorous standards pertaining to the security of personal health information (PHI and e-PHI) set forth in HIPAA.

Enterprises who are subject to HIPAA and wish to use the InRule Decision Platform or xAI Workbench to process PHI should contact our team to learn more.

ISO 27001

Platforms

Barium Live

Barium Live from Barium, an InRule Technology Company, has been independently certified to comply with ISO 27001. For more information on this certification, please contact our security team at security@inrule.com .

Security Updates and News

For more information, please contact our sales team or email security@inrule.com to engage with our SecOps team.