Our stance on data privacy and security
At Nayya, our commitment to data privacy and security is at the core of everything we do. Nayya follows generally accepted industry standards and maintains reasonable and appropriate safeguards to ensure the security, availability, integrity, confidentiality, and privacy of the information in Nayya’s possession.
Our standards
- HIPAA compliant
- WCAG AA 2.1
- SOC2+HITRUST
- ADA
- CCPA
- NIST 800
Our certification and audit process
Nayya has achieved SOC2+HITRUST CSF certification, an accreditation that exemplifies adherence to the Common Security Framework (CSF). This framework consolidates a multitude of standards and regulations to assist organizations in efficiently managing compliance and risk. The HITRUST CSF Certification involves a rigorous validation process that certifies an organization's compliance with these standards, bolstering its cybersecurity measures and affirming its dedication to safeguarding sensitive data. Furthermore, Nayya undergoes an annual audit by an independent data security firm, which helps maintain the robustness and currency of Nayya’s security framework.
Privacy policy access
For more information about how we handle employee data, please reference our Privacy Policy. Nayya believes in open and honest communication which is why our privacy policy outlines exactly how we collect and use consumer data in our platform and across all services.
DATA PRIVACY & SECURITY
Have no fear. Managing Data and Privacy in Today’s Enterprise
Hear from leaders in data privacy and security on what it means to hold the highest standards in this space and still deliver innovative experiences for you and your employees.
The Company We Keep
We’d love to connect with you
Let’s talk about how you can create a personalized benefits experience that works like magic.