Mimecast Completes HIPAA Security Compliance Assessment and SOC 2 Type 1 Exam

Company recognized for its commitment to ensuring the highest quality and security of services for customers

Watertown, MA – April 12, 2016 (Business Wire) Mimecast Limited (NASDAQ: MIME), a leading email and data security company, announced today that it has completed an independent Health Insurance Portability and Accountability Act (HIPAA) Security Compliance Assessment and Service Organization Control 2 Type 1 (SOC 2 Type 1) Independent Service Audit. Both third-party reports affirm the integrity and security of Mimecast’s operations and applications.

The HIPAA Security Compliance Assessment, which was performed by 360 Advanced, Inc, evaluated internal controls that satisfy the Department of Health and Human Services’ Omnibus Final Security Rule for governing “protected health information,” issued in January 2013. This compliance assessment involved verifying the safeguards in place to protect health information within Mimecast’s software and facility.  

“The completion of the HIPAA assessment demonstrates Mimecast’s commitment to protecting customer data, particularly within the healthcare field,” said Neil Murray, chief technology officer, Mimecast. “Cybercrime plagues the healthcare industry, with the recent string of ransomware attacks on U.S. hospitals as just one example. Mimecast provides a critical layer of security at the email gateway, warding off threats like spear-phishing that put companies dealing with sensitive information at risk, and this HIPAA assessment further validates its importance.”

The SOC 2 Type 1 exam, developed by the American Institute of Certified Public Accountants (AICPA), was performed by Hiestand, Brand, Loughran, P.C. It is the most widely recognized authoritative guidance for providing service organizations with a uniform method for disclosing independently assessed information about the design and operation of internal controls related to their services. Mimecast joins an elite group of companies that demonstrate a substantially higher level of assurance and operational visibility to their customers.

“Today’s threat landscape is increasingly sophisticated, and newer attacks like whaling have the potential to cost organizations billions of dollars in losses,” added Murray. “Choosing an organization like Mimecast that is maintaining the highest security standards for its customers, processes and technology can make or break a business. Achieving this industry standard shows our clients and partners that they’re in safe hands.”

About Mimecast
Mimecast (NASDAQ: MIME) makes business email and data safer for 16,200 customers and millions of employees worldwide. Founded in 2003, the company's next-generation cloud-based security, archiving and continuity services protect email and deliver comprehensive email risk management.

Mimecast Social Media Resources

LinkedIn: Mimecast

Facebook: Mimecast

Twitter: @mimecast

Mimecast Blog


U.S. Press Contact

Stephanie Jackman

March Communications

+1 617 960 9875



Mimecast and the Mimecast Logo are registered trademarks.  All other company and product names may be trademarks or service marks of their respective owners. 

Disclaimer: Press releases are provided for historical purposes only. The information contained in each is accurate only as of the date the press release was originally issued.