Upstream Works
Security and Compliance
AWS FTR
Upstream Works cloud solutions follow the AWS FTR framework to protect data and systems.
HIPAA Compliant
Upstream Works desktop cloud solutions are HIPAA compliant to protect patient data.
Prepared for FedRAMP
Upstream Works products are prepared for FedRAMP and meet DISA and STIG compliance requirements.
SOC 2 Certified
Upstream Works solutions are SOC 2 Type II compliant providing enterprise-level security and protection.
GDPR
Upstream Works solutions allow users to follow General Data Protection Regulation (GDPR) principles.
Penetration Testing
Penetration testing is based on OWASP and NIST SP 800-115 security testing.
Upstream Works SOC 3 Compliance Report
The System and Organization Controls (SOC) reports are independent third-party reports that demonstrate how Upstream Works achieves key compliance controls and objectives. The Upstream Works SOC 3 Security and Availability Report provides a high-level overview and summary of the key information presented in the SOC 2 report.
Upstream Works Data Management and Security
Upstream Works provides omnichannel contact center software that is designed to provide an optimal customer experience. It does not store customer profile records itself. However, it does maintain interaction records which identify customers in terms of pertinent information that enables great CX, including channel of contact, reason for the contact, and other information the contact center deems to be useful. The desktop and routing platform can also track repeat contact behaviors and help identify potential fraud.