Trust Center
The Trust Center at EPIC is our headquarters for risk and information security compliance. From here you can access certifications, third party attestations and other supplemental information to perform your due diligence review.
Monitoring
Continuously monitored by Secureframe
Communications
Terms of Service
Communication of Critical Information
Description of Services
Privacy Policy
Communication of Security Commitments
Physical Security
Physical Security Policy
Access Security
Unique Access IDs
Access Control and Termination Policy
Administrative Access is Restricted
Least Privilege in Use
Encryption and Key Management Policy
Network Security
Network Security Policy
Automated Alerting for Security Events
Risk Assessment
Risk Register
Risk Assessment
Risk Assessment and Treatment Policy
Vendor Risk Assessment
Vendor Risk Management Policy
Incident Response
Incident Response Plan
Incident Response Plan Testing
Lessons Learned
Tracking a Security Incident
Vulnerability Management
Third-Party Penetration Test
Vulnerability and Patch Management Policy
Confidentiality
Disposal of Customer Data
Data Retention and Disposal Policy
Data Classification Policy
Organizational Management
Acceptable Use Policy
Advisor Meetings on Security
Cybersecurity Insurance
Code of Conduct
Information Security Program Review
Availability
Testing the Business Continuity and Disaster Recovery Plan
Business Continuity and Disaster Recovery Policy
Backup Restoration Testing
Uptime and Availability Monitoring
Change Management
Configuration and Asset Management Policy
Change Management Policy
Secure Development Policy
Production Data Use is Restricted
Segregation of Environments
Compliance
CCPA
CPRA
GDPR
ISO 27001
SOC 2 Type 2
