Please read this overview for a summary of applicable regulations.

• • ISO 27001
    • Compliant, not certified.
  • HIPAA
    • Not applicable as we do not store client health data.
    • Employees are covered by OHIP which exceeds USA standards.
  • Data Protection Directive / GDPR
    • Client implementation / usage dictates compliance.
    • Compliant by clients opting to represent Vialect in the EU.
  • C-28
    • Automated Noodle emails contain a one click unsubscribe link

• • PCI DSS
    • A local install is required to comply.

• • 201 CMR 17.00
    • Compliant, not certified.

• • NIST SP 800-95
    • Compliant.

• • SOC 2
    • Compliant, not certified.

• • ADA
    • Compliant.
    • Google Lighthouse reports 100% Accessibility for Noodle.
  • WCAG
    • Compliant.
  • Section 508
    • Compliant.
  • SOX
    • we store encrypted backups for over 5 years

Please contact us if you have specific questions about regulation compliance.