Compliance at Blankenship Life Insurance
Blankenship Life Insurance places a high priority on data storage security, which is why we exclusively collaborate with third-party providers who demonstrate a greater commitment to data integrity than we do.
 | ISO/IEC 27001 is one of the most widely recognized independent international security standards. This certificate is awarded to organizations that comply with ISO's high global standards. |
 | ISO/IEC 27701 is an extension to the ISO/IEC 27001 and ISO/IEC 27002 standards for privacy management within the context of the organization. The certification standard is designed to enhance the existing Information Security Management System (ISMS) with additional requirements in order to establish, implement, maintain, and continually improve a Privacy Information Management System (PIMS). This standard enables organisations to demonstrate compliance with the various privacy regulations around the world that are applicable to them. |
 | ISO/IEC 27017 gives guidelines for information security controls applicable to the provision and use of cloud services by providing additional implementation guidance for relevant controls specified in ISO/IEC 27002 and additional controls with implementation guidance that specifically relate to cloud services. |
 | ISO/IEC 27018 establishes commonly accepted control objectives, controls and guidelines for implementing measures on safeguarding the PII that is processed in a public cloud. These controls are an extension of ISO/IEC 27001 and ISO/IEC 27002, ISO/IEC 27018 which provide guidance to organizations concerned about how their cloud providers are handing personally identifiable information (PII). |
 | ISO 9001:2015 is defined as the international standard that specifies requirements for a Quality Management System (QMS). Organizations use the standard to demonstrate the ability to consistently provide quality products and services that meet customer and regulatory requirements. |
 | ISO/IEC 20000-1:2018 is the leading international IT Service Management System (SMS) standard, with the objective to ensure the quality of the IT services. It specifies requirements for an organization to establish, implement, maintain and continually improve a service management system and it supports the management of the service lifecycle, including the planning, design, transition, delivery and improvement of services to meet the service requirements and deliver value. |
 | ISO 22301:2019 BCMS (Business Continuity Management System) is an international standard offering guidelines to protect and sustain our business from potential disruptions. It helps us identify, assess, and managing threats relevant to our operations and critical business functions that could impact our service to customers. By setting up recovery plans and strategies to ensure our business doesn’t come to a standstill during disruptions and any unexpected disruptions in the future. |
 | SOC 2 Type II compliant. SOC 2 is an evaluation of the design and operating effectiveness of controls that meet the AICPA's Trust Services Principles criteria. |
 | SOC 1 Type II compliant as per AICPA's SSAE18 standard and IAASB's ISAE 3402 standards. SOC 1 reports are primarily concerned with examining controls that are relevant for the financial reporting of customers. |
 | SOC 2 + HIPAA - An independent third-party audit firm has examined the description of the system related to Application Development, Production Support and the related General Information Technology Controls for the services provided to customers, from Zoho offshore development centre, based on Security, Privacy and breach requirements set forth in the Health Insurance Portability and Accountability Act (“HIPAA”) Administrative Simplification. The responsibility of Zoho is limited to the extent it acts as a 'Business Associate'. |
 | TX-RAMP(Texas Risk and Authorization Management Program) is a certification process designed by the Texas Department of Information Resources (DIR) to ensure that cloud products and services meet stringent security and privacy standards. Cloud Service Providers (CSPs) intending to contract with Texas state agencies must adhere to TX-RAMP requirements. By following the TX-RAMP certification and adhering to its requirements, cloud service providers can ensure they meet the security standards necessary to protect sensitive data and comply with Texas state regulations. |
 | CCPA is a data privacy law specific to the processing of personal information of California residents that requires businesses to protect their personal information and provides privacy. |