Phoenix Innovate Achieves HITRUST CSF® Certification

To Further Mitigate Risk in Third-Party Privacy, Security and Compliance, Phoenix Innovate Achieves HITRUST CSF® Certification

Phoenix Innovate is excited to announce that key implemented systems have earned HITRUST certification. Because Phoenix Innovate is a full-service marketing firm with solutions that require the handling of sensitive client and member data for complex compliance, regulatory and privacy requirements, this certification is further proof of the company’s dedication to client data protection.

A HITRUST CSF Certified status demonstrates that the organization’s data security for key implemented systems has met regulations and industry-defined requirements and is appropriately managing risk. This achievement places Phoenix Innovate in an elite group of organizations worldwide that have earned this certification in a data secured environment and will be a significant benefit to the health care industry it serves. 

Said Kirk Vercnocke, CEO, “We’re immensely proud of this achievement. We’re glad to have taken on the rigorous process of certification, because we know that above all our clients trust us to keep their information secure. HITRUST is the gold standard in health care and provides a measure of relief we can offer to our clients in every industry, knowing that we are holding ourselves to the very highest standards and continuing to invest in the technology and training required to maintain data security.”

Chief Technology and Compliance Officer Mike Spalding agreed. “Data security protocols are constantly changing, and this helps demonstrate our commitment to protecting our clients’ information. Because the highest level of certification company trusts our data handling, our clients can as well. We provide our clients the assurance that their data is secure. Holding ourselves to the highest standards in not only data security but also in availability and continuity of the services we provide to them is our commitment to our clients.”

The HITRUST compliance process allows Phoenix Innovate to scale its scope to the areas relevant to the business or services it performs for its clients. This enables the company to include not only health care data, but also financial data for its nonprofit and retail accounts that accept credit card payments. The HITRUST compliance process also applies to technical data requiring the same type of security protections as the Department of Defense. This custom framework allows Phoenix to evolve and grow its HITRUST certification as needed based on the needs of its clients.

“In today’s ever-changing threat landscape, HITRUST is continually innovating to find new and creative approaches to address challenges,” said Jeremy Huval, chief innovation officer of HITRUST. “Phoenix Innovate’s HITRUST CSF Certification is evidence that they are at the forefront of industry best practices for information risk management and compliance.”

Since HITRUST allows for organizations to create a customized framework, it allows Phoenix Innovate to apply HIPAA requirements as well as other important requirements for clients in other industries including relevant areas like PCI-DSS, ISO and ITAR. The HITRUST certification is valid for two years and can be renewed. For more information, visit

Mike Spalding
Mike Spalding

Chief Technology and Compliance Officer

LinkedIn logo