symplr Achieves HITRUST Certification & Re-certification for Key Solutions

HOUSTON – July 15, 2025 – symplr®, a leading provider of enterprise healthcare operations software, today announced it has achieved HITRUST® Risk-based, 2-Year (r2) re-certification for symplr Payer, Contract, and Clinical Communications software. Additionally, the company’s enterprise and organizational processes have earned HITRUST certified status.

“HITRUST certification is globally recognized as validation that information security and privacy controls are effective and compliant with various regulations,” said Jeremy Huval, Chief Innovation Officer at HITRUST. “HITRUST certification is considered the gold standard because of the comprehensiveness and applicability of the control requirements, depth of the assurance process, and level of oversight that ensures accuracy.”

“Achieving and maintaining HITRUST certification is no small feat; it requires an unwavering focus on security and privacy at every level,” said Robyn Barton, a shareholder in LBMC’s HITRUST service line*. “symplr’s commitment to these high standards is a powerful statement about their role as a trusted technology partner in healthcare.”

The symplr Operations Platform, which unifies disparate operational solutions, is fortified with System and Organization Controls (SOC) 2 certifications across 35 products (up from 29 last year) and SOC 1 across eight products, along with 24/7 advanced threat detection and compliance monitoring. Earning and upholding SOC 2 certification necessitates detailed documentation, stringent internal controls, and a continuous commitment to data integrity, availability, and confidentiality.

The HITRUST certifications and SOC attestations, along with adherence to HIPAA Security & Privacy requirements and the NIST 800-53 framework across all SaaS solutions, reflect symplr’s efforts to align with established security and compliance standards commonly expected in healthcare IT.

Healthcare reported the most data breaches of any industry in 2024, and 40% of health IT leaders said cybersecurity is their organization’s top threat. As emerging technologies like generative AI lower the barrier to entry and increase the level and frequency of attacks, healthcare organizations can’t afford to compromise.

“As cyberattacks on healthcare systems grow in frequency and sophistication, security is no longer just an IT problem; it’s a strategic imperative that the entire healthcare enterprise from the top down must prioritize,” said Saeed Valian, Chief Information Security Officer at symplr.

To learn more, visit www.symplr.com/platform/technology-security.

About symplr

symplr is a leader in enterprise healthcare operations software and services with a first-of-its-kind operations platform. Trusted in 9 of 10 U.S. hospitals and 400+ U.S. health plans, symplr optimizes operations and maximizes care powered by our cloud-based workforce, quality, provider data management, and spend solutions. Gain efficiency, reduce complexity, and improve outcomes where it matters most. Learn how to stay ahead of change at www.symplr.com.

*LBMC Cybersecurity provides HITRUST compliance, assessment, and certification to assure healthcare entities are protected.