Skip to content
CompareScribes

Compliance & security

HITRUST

Healthcare-specific control framework combining HIPAA, NIST and ISO requirements.

HITRUST is a healthcare-specific control framework that bundles HIPAA, NIST and ISO requirements into a unified certifiable program. It's heavy and expensive โ€” vendors that hold it tend to be aimed at large US health systems and behavioural-health agencies.

See also

  • HIPAA โ€” US federal law protecting health information; the minimum compliance bar for US deployments.
  • ISO 27001 โ€” International standard for information-security management systems.