Data security is a top priority at IWCO Direct and Mail-Gard. We hold ISO 27001:2013, PCI DSS v3.2.1, and HITRUST CSF v9.2 Certifications, are SOC 2 compliant, and operate HIPAA/HITECH compliant facilities. We also provide employee training, robust data protection policies and integrate our clients’ data security requirements into our own processes.
We’ve fostered a culture of security and recognize it’s a continuously evolving practice. Technical controls alone won’t provide the security that our clients expect. That’s why we take a thorough approach to securing data throughout our workflow by evaluating end-to-end controls to minimize risk.
Our culture of security begins on the first day of employment, with new employees receiving security awareness and critical compliance training. Our internal security requirements are seamlessly integrated with those of our clients into our Employee Guidebook, data security policies, and everyday procedures. We continue to build security awareness into our company culture with ongoing communication across the organization to ensure everyone understands that security is part of everyone’s job, with discipline and diligence required at all times.