PMMC Announces SOC 2 Compliance

July 1, 2017

PMMC, a leading revenue cycle management company, is excited to announce that as of July 1, 2017, they are now in compliance with all Service Organization Control (SOC) 2 Type II regulations, as enforced by the American Institute of Certified Public Accountants (AICPA).

Previously, PMMC had been compliant with SSAE-16 SOC 1 Type II control standards but due to the need for greater information security measures, they will now be accommodating SOC 2 Type II standards and the associated Trust Services Principles. “Compliance is a company-wide effort at PMMC.  Our entire workforce is committed to the controls we’ve established that support our customers,” said Collin Quinn, Director of Systems Integration & Corporate Compliance at PMMC. “The decision to migrate to the SOC II standard is a prime example of PMMC’s dedication to ensuring the highest level of security and confidentiality surrounding our customers’ data.”

The SOC 2 reports will be conducted in accordance with AT Section 101 and will adhere to the AICPA audit guidelines. While SSAE-16 SOC I Type 2 focuses primarily on taking control of financial reporting, the shift to SOC 2 will help to draw a line in the sand between financial reporting and reports on controls at a service organization related to the core Trust Services Principles.

The SOC 2 framework aims to address:

  • The security, availability, and processing integrity of a service organization’s system
  • The confidentiality of the information that the service organization’s system processes or maintains for user entities.
  • The privacy of personal information that the service organization collects, uses, retains, discloses, and disposes for user entities.

By agreeing to comply with SOC 2 Type II standards, PMMC will continue to undergo bi-annual audits to ensure that they are staying up-to-date with the latest rules and AICPA guidelines. Copies of the report will be available upon request for all facilities using PMMC finance software. The second and final audit for SOC II concluded on April 21st with the delivery of PMMC’s first SOC II Type 2 Final Report scheduled for late June, 2017.

To learn more about PMMC’s adherence to SOC 2 Type II regulations, please visit www.pmmconline.com or contact Collin Quinn at This email address is being protected from spambots. You need JavaScript enabled to view it..

About PMMC

PMMC provides high value revenue cycle software and services to improve the financial performance of healthcare organizations. Our software and expertise focuses on payment accuracy and identifying more revenue opportunities across the revenue cycle.

PMMC helps hospitals identify underpayments and denials, increase price transparency, and manage bundled payments. Clients see, on average, a 10 to 1 return on investment with software and services. For more information, visit www.PMMConline.com.