Trust Center
Published in one place so you do not have to chase them. Certificates of insurance, BAA template, DPA, and sub-processor list available on request.
NMSDC certification in progress
BAA available on request
GL $2M, E&O $1M, Cyber $1M
On roadmap, first healthcare client
Posture details
Corpshore Solutions Corporation, our parent, is a certified minority business enterprise candidate. NMSDC certification is in active progress, targeted for completion within the next 12 months. Spend with us counts toward Tier 1 or Tier 2 supplier diversity reporting subject to your program rules.
We operate non-clinical healthcare functions only (billing, coding, prior authorization, RCM analytics, patient access, HIM). Workforce trained on HIPAA, ePHI handling, and incident response. BAA available on request. We do not store ePHI outside the client's environment unless contractually required.
On roadmap, targeted to coincide with our first healthcare client engagement. We will publish the report on this page when complete and notify existing clients via the standard channel.
General Liability $2M. Errors and Omissions $1M. Cyber Liability $1M. Certificate of insurance available on request. Renewal date in our standard procurement pack.
By default, client data stays in your environment. We access via your tenant under your IAM controls. Where data must reside in our systems (Supabase for form fallback, Zoho CRM for lead management), it is in the regions you specify in the DPA.
DPA available on request. Sub-processor list maintained and shared with active clients. Data subject access requests acknowledged within 72 hours, fulfilled within the statutory window per jurisdiction.
All operations staff complete background checks per the local jurisdiction standard. For US-facing engagements, this includes SSN trace, county criminal, federal criminal, and education verification.
Multi-region delivery footprint provides natural redundancy. Each engagement has a documented BCP including failover delivery center, communication tree, and recovery time targets.
We send a single PDF: insurance certificate, BAA template, DPA, sub-processor list, BCP summary, and any vendor questionnaires you require us to complete.