Security & Data Protection

Last Updated and Effective: 10.29.2024

At Family First (FF), the security and privacy of our users' data are foundational to our operations. As a global provider of caregiving support services through our cloud-based web and mobile app platform, we recognize our responsibility in safeguarding personal health information (PHI). Our approach to security is designed to protect the confidentiality, integrity, and availability of customer data and to align with applicable regulatory and contractual requirements.

Security Certifications and Compliance 

Family First maintains the SOC 2 Type II certification.

We fully comply with Privacy regulations for protecting PHI data maintain administrative, physical, and technical safeguards aligned with applicable privacy and data protection regulations including HIPAA, CCPA, and GDPR.

 

Robust Security Measures 

  • Encryption: Data is encrypted using industry-standard protocols. Encryption standards include AES-256 encryption for data at rest and TLS 1.2 or higher for data in transit.

  • Access Controls: Role-based access controls and multi-factor authentication are implemented. Multi-factor authentication is required for privileged access and remote administrative access.

  • Continuous Monitoring: Our security monitoring program continuously monitors systems. We leverage centralized logging, endpoint detection and response tools, and managed security monitoring services.

  • Regular Audits and Assessments include independent penetration testing and periodic vulnerability scanning, with findings tracked through formal remediation processes.

 

Data Governance

  • Data Ownership: Customers retain ownership of their data.

  • Retention and Disposal: Data is retained per contractual and legal requirements and securely deleted or returned upon termination.

Transparency and Trust 

Security documentation, including our SOC 2 Type II report, is available under confidentiality agreement. To report a security concern, contact security@family-first.com.

 

Family First Environmental Policy and Climate Change Commitment

At Family First, we are committed to operating in a way that prioritizes environmental responsibility and sustainability. As a 100% virtual healthcare organization, our environmental impact is minimal, but we recognize the importance of continuously improving our footprint. We strive to minimize energy consumption through the efficient use of cloud-based technologies and collaborate with partners who share our values for sustainability and environmental stewardship. Our environmental policy is guided by our commitment to reducing our carbon footprint, supporting renewable energy, and mitigating the effects of climate change. This policy outlines our approach to addressing key environmental concerns, including energy efficiency, climate change mitigation, and responsible resource usage.

  1. Energy Efficiency and Cloud Services: We rely on cloud infrastructure providers that prioritize energy efficiency and use renewable energy sources. We actively monitor and select partners who adhere to stringent environmental standards to reduce the indirect environmental impact of our operations. See MicroSoft’s Advance Sustainability, Azure Cloud Sustainability, MicroSoft’s Climate Commitment and RingCentral.
  1. Climate Change Mitigation: We recognize the urgent need to address climate change and are dedicated to minimizing our carbon footprint by reducing energy consumption and promoting virtual collaboration. Our cloud service partners utilize renewable energy sources, aligning with our goal to support low-carbon operations.
  1. Waste Reduction: As a fully digital organization, we avoid generating physical waste and harmful byproducts. We ensure that our operations do not result in material discharges to air, land, or water. 
  1. Sustainable Practices: We promote sustainable practices within our operations, encouraging remote work, digital communications, and paperless workflows to reduce our overall environmental impact.

Family First is dedicated to maintaining sustainable business practices that align with our values and the expectations of our clients and stakeholders. We continuously assess and improve our environmental policies to ensure we contribute positively to global efforts in addressing climate change. While our operations have a limited direct environmental impact, we remain committed to reducing our footprint by working with responsible partners and adopting best practices in sustainability. This policy will be reviewed regularly to ensure we meet evolving environmental standards and demonstrate our commitment to a healthier planet. We believe that taking proactive steps today will help secure a better tomorrow for future generations.

 

Conclusion 

Family First is dedicated to providing a secure and trusted platform for delivering caregiving services. Our robust security measures, compliance with international regulations, and commitment to continuous improvement ensure that our users' data is always protected. We take our responsibility seriously and are committed to maintaining the highest standards of security and privacy for our users worldwide. 

For additional information, see System Description and Controls.