Theralytics Security And Compliance

Theralytics Security & Compliance

At Theralytics, we support thousands of clinicians and organizations across the ABA and various disciplines. With that responsibility comes an uncompromising commitment to security, privacy, availability, and compliance. Our platform is engineered with multiple layers of safeguards, independently verified by industry-leading auditors, to ensure your practice can operate with full confidence.

Independent Audits & Certifications

Theralytics is ONC Health IT Certified

Theralytics' Practice Management and Data Collection Software meets the Office of the National Coordinator for Health Information Technology’s (ONC Health IT) mandate requirements and has achieved Drummond Certified™ status.

The ONC Health IT program ensures that certified products that process and store electronic health records meet federal standards for functionality, security, and interoperability with the goal of protecting sensitive information, improving care coordination, and enhancing patient outcomes.

Theralytics is SOC 2 Compliant

Theralytics maintains a secure technical infrastructure supported by documented security policies, procedures, and controls designed to protect customer data. As part of this commitment, Theralytics has completed a SOC 2 Type II audit with no exceptions.

The SOC 2 audit was conducted by A-LIGN, an independent cybersecurity and compliance assessment firm trusted by organizations across multiple industries.

A SOC 2 Type II audit evaluates both the design and ongoing effectiveness of security, availability, and confidentiality controls over a defined review period, providing independent assurance that these controls operate reliably in day-to-day practice.

Theralytics is HIPAA Compliant

Theralytics is built with HIPAA compliance at its core. Our platform and infrastructure are designed to protect electronic protected health information (ePHI) and align with the requirements of the HIPAA Privacy, Security, and Breach Notification Rules.

Theralytics is hosted in a secure, HIPAA-compliant infrastructure that includes encrypted storage, managed firewalls, intrusion detection, and continuous monitoring. In addition to this foundation, Theralytics implements administrative and technical safeguards such as encryption of PHI at rest and in transit, role-based access controls, comprehensive audit logging, secure data transmission, and strict internal device and endpoint protections.

We conduct regular risk assessments, perform ongoing security reviews, and evaluate all vendors for HIPAA alignment. Theralytics also operates as a HIPAA Business Associate and executes BAAs with customers as required.

Our Dedication to Continuous Compliance

Theralytics’ commitment to security is ongoing and continuously evolving. As industry standards advance and new threats emerge, we proactively enhance our systems, controls, and monitoring practices to stay ahead. Whether you are a small ABA practice or a multi-state organization, you can rely on Theralytics to provide a secure, compliant, and resilient platform backed by independent verification, dedicated security leadership, and a culture that prioritizes protecting your data at every level.

To ask questions or request a report about our security compliance:

  • Email us at: compliance@theralytics.net
  • Call us at: 866.710.3590
(866) 710-3590
info@theralytics.net
Features
SchedulingBilling ServicesData CollectionDocumentation Management
Mobile ApplicationReporting & Analytics
Quick Links
PricingBilling ServicesLeadership
BlogsCase StudiesSupportContact UsRequest Demo
Get in Touch
arrow graphic
© 2025 Theralytics. All rights reserved.
FeedbackPrivacy PolicyTerms of Service