Statement of Policy on Ethical Practices
VARIS has a policy of maintaining the highest level of professional and ethical standards in the conduct of its business. VARIS places the highest importance on its reputation for honesty, integrity, and high ethical standards. This Policy is a reaffirmation of the importance of the highest level of ethical conduct and standards. These standards can be achieved and sustained only through the actions and conduct of all VARIS staff. Each and every staff member, including management staff, of VARIS is obligated to conduct himself/herself in a manner to ensure the maintenance of these standards.
VARIS email address firstname.lastname@example.org as well as the VARIS Compliance Hotline 1-800-455-9081. Anonymous reporting is permitted. Matters reported through the hot line or other communication sources that suggest violations of the Code, practice policies, or any law will be documented and investigated promptly. The Compliance Office has the responsibility of maintaining a log of all reports, including the nature of any investigation and its results. Any such reports shall be maintained in a fashion that protects the attorney-client privilege, work product privilege, professional review privilege or any other legal protection that applies.
VARIS is a Business Associate to our customers who are Covered Entities. VARIS is committed to safeguarding protected health information. VARIS demonstrates its commitment to compliance abiding with required security regulations within the Health Insurance Portability and Accountability Act (HIPAA) and The Health Information Technology for Economic and Clinical Health (HITECH) Act. All information and data transmitted securely to VARIS from our customer’s is protected in a secure and confidential environment. VARIS safeguards all protected health information from misuse. VARIS will not use or disclose protected health information (PHI) other than as permitted or required by the Business Associate Agreement or as required by law. For more information on HIPAA regulations and guidelines, visit www.hhs.gov/ocr/privacy/.
Service Organization Control (SOC)
VARIS is committed to establishing and maintaining a robust control environment that meets and exceeds the security, availability, confidentiality, and privacy commitments made to our customers. VARIS is currently SOC 1 Type 2 and SOC 2 Type 2 certified.