Rappahannock IT | Trust Center

Security & Compliance

Transparency into how Rappahannock IT protects your data and meets compliance standards

See section

Resources

Subprocessors

Monitoring

Continuously monitored by Secureframe

View all

Compliance

NIST

NIST 800-171

PCI

HIPAA

CMMC

Organizational Management

Information Security Program Review

Management is responsible for the design, implementation, and management of the organization’s security policies and procedures. The policies and procedures are reviewed by management at least annually.

Risk Assessment

Vendor Due Diligence Review

Vendor SOC 2 reports (or equivalent) are collected and reviewed on at least an annual basis.

Communications

A Privacy Policy to both external users and internal personnel. This policy details the company's privacy commitments.

Resources

Subprocessors

Monitoring

Change Management

Availability

Organizational Management

Confidentiality

Vulnerability Management

Incident Response

Risk Assessment

Network Security

Access Security

Physical Security

Compliance

NIST

NIST 800-171

PCI

HIPAA

CMMC

Monitoring

Organizational Management

Risk Assessment

Communications