Neon has achieved HIPAA compliance, allowing it to securely store and process Protected Health Information (PHI), adding to its existing security certifications such as SOC 2 Type 2, ISO 27001, ISO 27701, GDPR, and CCPA. To ensure HIPAA compliance, Neon employs encryption, access controls, continuous monitoring, and an incident response system that includes breach notification within five business days. The platform provides mandatory HIPAA training for employees and requires third-party subcontractors to meet HIPAA standards, while customers must configure their systems to comply with HIPAA guidelines. Neon's commitment to data security is ongoing, with plans to achieve PCI-DSS compliance in the near future to further enhance its security measures for enterprise customers.