AUDITING & COMPLIANCE
FMS COMPLIANCE IS A CULTURE DEDICATED TO FOLLOWING HIPAA,
HITECH, FDCPA, ISO, SSAE 16, PCI & GLBA
- HIPAA Certified
- Epic Certified
- Licensed to collect in all 50 states
- BCP & Disaster Recovery Program
- Document Destruction Protocol
- All calls are monitored and recorded
- $16 Million in insurance
- SSAE 16 Audit
- Speech Analytics
- PCI Compliant
- Monitored Calls
- ISO 27001/27002 Certified
FMS Inc. has successfully completed the auditing process and has been found to be “fully
compliant” with HIPAA and current ISO requirements. Compliance with ISO’s data management procedures protects your proprietary company and debtor information while mitigating the risk of security breaches that can result in lawsuits. FMS Inc. maintains ISO compliance on a semi-annual basis through required internal and third-party audits.
SSAE 16 & PCI
ONGOING SEMI-ANNUAL ASSESSMENTS
As of April 30, 2010 FMS completed its initial SAS70 auditing process and assessment. Since that date FMS in conjunction with AARC360 – a nationally known CPA and Data Security Auditing firm – completes a semi-annual SSAE16 with added focus on HIPAA, HITECH, PCI, and ISO Vulnerability and Penetration testing. AAR360 continues to report no relevant exceptions have been found in the following controls: Organization and Administration, Human Resources Security, Physical and Environmental Security – Corporate Physical and Environmental Security – Data Center, Logical Access Control, Network Security and Monitoring, Backup, Application Development and Change Management, Technical Vulnerability Management, Communications and Operations Management, and Core Process Operations.
PCI LEVEL II SERVICE PROVIDER
FMS is currently PCI Level II Compliant and maintains Networking Security, Data Encryption, Virus Protection, and Policies of a Level I Payment Processor.