Security & Compliance

At GrayHair, we take SECURITY seriously. Our unwavering dedication to safeguarding our client data is more than just our duty; it’s a 24/7, 365-day commitment. We pride ourselves on implementing the highest levels of data privacy and security in the industry.

Security is Paramount

Our security and compliance team closely monitors and manages client information, ensuring strict adherence to industry regulations and specific company requirements. We hold various certifications, including SOC2 Type 2 with HITRUST, PCI-DSS, HIPAA, and CCPA compliance, demonstrating our commitment to protecting sensitive data and meeting regulatory standards.

Achieving Compliance

We are a company that takes an aggressive, best-practice approach to data security. As a team, we’re committed to safeguarding the areas that have the greatest impact on the protection of our clients’ data.”

– Jeffrey Hummel

GrayHair President

AICPA SOC

SOC2 Type 2 with HITRUST for Service Organizations

GrayHair proudly holds a SOC2 Type 2 Certification with HITRUST, showcasing our unwavering dedication to robust security, availability, processing integrity, confidentiality, and privacy controls. This certification affirms our commitment to ensuring the security of user data and providing confidence to our clients and partners in the resilience of our systems and the safeguarding of their sensitive information.

Security Awareness Certified with KnowBe4

GrayHair utilizes the KnowBe4 platform to not only keep our employees informed, we utilize the ongoing training that is updated monthly so we stay on top of the latest intel. Informed employees are powerful allies in the current threat landscape we live in.

Certifications

Training

  • SOC2 Type 2 with HITRUST controls, Security, Availability, Confidentiality, Processing Integrity, and Privacy
  • PCI-DSS
  • HIPAA

  • Third Party Risk Management Assessments (CyberGRX & TruSight)

  • OWASP Top 20
  • Privacy and Data Protection
  • Security Awareness Essentials
  • Business Ethics
  • HIPAA

  • Continuous company-wide training, including targeted testing

The GrayHair Advantage

GrayHair’s teams serve the largest mailers in the country, processing over 125 billion data points annually — that’s over 25% of all postal data!

Our solutions define best mailing practices, enhance the customer experience, increase response rates, and enforce compliance rules.

GrayHair solution pillars address challenges in departments like Marketing, Fraud, Client Experience, and Postal Divisions.

GrayHair partners with best-in-breed technology partners to provide the most optimal client experience.

Our team enforces the highest levels of data privacy and security including SOC 2 with HITRUST, HIPAA, PCI, CCPA.

GrayHair is the nation’s leading origin-compiler of New Mover data, housing over 120 million historical data points.