PCI COMPLIANCEThe Payment Card Industry Data Security Standard (PCI DSS) applies to companies of any size that accept credit card payments. Book4Time is PCI compliant, whilst our platform does not store any credit card data we partner with PCI certified payment gateways that provide a tokenized solution that can prevent sensitive payment card data from ever entering your infrastructure. We also embed best-in-class web application security technologies into our solutions to help safeguard your sensitive data. These include defenses against SQL injection, one of the most common types of attacks on web service security and data integrity.
HIPAA COMPLIANCEBook4Time is The Health Insurance Portability and Accountability (HIPAA) compliant and maintains the appropriate administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of protected health information (PHI) so it remains safe and secure. HIPAA sets the standard for sensitive patient data protection. Companies that deal with protected health information (PHI) must have physical, network, and process security measures in place and follow them to ensure HIPAA Compliance.
Learn more about HIPAA compliance
SSAE 18 / ISAE 3402 COMPLIANCEBook4Time is assessed yearly by external auditors who perform detailed examinations assuring that Book4Time is operating effectively and in accordance with predefined processes and controls. In a SOC Type II report, the external auditor reports on the suitability of the design and existence of controls and on the operating effectiveness of these controls during a predefined period. ISAE (International Standards for Assurance Engagements) 3402 is a global assurance standard for reporting on controls at service organizations. If you would like to obtain a copy of Book4Time’s SSAE 18 / ISAE 3402 Compliance Report, please email firstname.lastname@example.org
Data Privacy – General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) complianceBook4Time’s strict security, privacy and operation standards already comply with the regulation standards set out by the GDPR and CCPA. The aim of the GDPR is to protect all EU citizens from privacy and data breaches in an increasingly data-driven world. The regulation affects all companies doing business with EU citizens regardless of their physical location. The CCPA provides enhanced privacy rights and consumer protection for California residents. It gives California residents significant rights around their data. Find out more about GDPR Find out more about CCPA
Contact Us:For more information or questions regarding Book4Time and our compliance processes or validations please contact email@example.com
Want to grow your wellness business?
Tell us a bit about your goals, and we’ll be in touch to schedule a demo.