Americas Español Find us Contact us User login


HIPAA/HITECH compliance

Esker has completed a thorough security assessment of its on-demand solutions against the published safeguards and breach reporting requirements of the Health Insurance Portability and Accountability Act (HIPAA) and Health Information Technology for Economic and Clinical Health (HITECH) Act.

Successful completion of this assessment indicates that Eskerís processes, procedures and controls for handling electronic protected health information (ePHI) have been formally evaluated and tested by an independent auditing firm, and are in compliance with the requirements of both HIPAA and the HITECH Act.

Learn more


SSAE 16 and ISAE 3402

Esker is proud to have been awarded Statement on Standards for Attestation Engagements (SSAE) No. 16 and International Standard on Assurance Engagements (ISAE) 3402 Type 2 compliance for its on-demand document process automation solutions.

SSAE 16 and ISAE 3402 standards validate the quality and integrity of Esker's internal control processes and procedures for on-demand customers and address the rules of internal control outlined in the Sarbanes-Oxley Act legislation.

Learn more


EU-U.S. Privacy Shield

The EU-U.S. Privacy Shield provides a set of robust and enforceable protections for the personal data of EU individuals. Esker complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from the European Union member countries.

Esker has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Privacy Shield Principles of Notice, Choice, Accountability of Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, Recourse, Enforcement and Liability. To learn more about the EU-U.S. Privacy Shield program and to view Esker's certification page, please visit


Contact me