Certifications Maintained by athenahealth

In support of its mission to build a thriving ecosystem that delivers accessible, high quality, and sustainable healthcare for all, athenahealth has achieved several certifications for all or part of its products and services, including:

  • Common Security Framework (CSF) Certified status from the Health Information Trust Alliance (HITRUST)
  • Payment Card Industry – Data Security Standards (PCI-DSS) enforced by the PCI Standards Council
  • Electronic Prescriptions for Controlled Substances (EPCS) - certification issued through a third-party certification authority approved by the Drug Enforcement Administration of the Department of Justice
  • DirectTrust certification – Accreditation Programs for Health Information Service Providers (HISP)
  • and for Certificate and Registration Authorities (CA/RA) in Direct Exchange utilizing the DirectTrust Trust framework
  • Kantara certification as a full-service Credentialing Service Provider through the Kantara Initiative
  • Electronic Healthcare Network Accreditation Commission (EHNAC) certification through EHNAC demonstrating conformance with federal healthcare reform legislation including HIPAA, HITECH/ARRA, ACA, Omnibus Rule and other applicable state legislation
  • SOC 1 report demonstrating conformance with the Statement on Standards for Attestation Engagements No. 18 (SSAE 18)
  • 2015 Edition certification of Health IT by the Office of the National Coordinator for Health Information Technology (ONC)

To learn more, please contact our Sales Team or your Customer Success Manager (CSM).


For detailed certification information please visit:

**Certifications may vary depending on product or service line**