ASAPP achieves HITRUST certification to support regulated enterprises
Read the Blog
ASAPP logo icon.
👋 Want to talk to our generative AI agent?
Click below to experience GenerativeAgent in action
Talk to GenerativeAgent: Try it now
Learn more about GenerativeAgent first
I’m interested in a demo
Table of Contents
This is also a heading
This is a heading

Stay up to date

Sign up for the latest news & content.

Thank you for subscribing.
Oops! Something went wrong while submitting the form.
Published on
January 28, 2026

Why trust is the ultimate language of AI: ASAPP’s journey to HITRUST certification

Khash Kiani
Head of Security, Trust, and IT at ASAPP
5 minutes
AI Safety & Security
Why ASAPP
Table of Contents
This is also a heading
This is a heading

In an era where generative AI is transforming the enterprise, certainty, predictability, and compliance are becoming a rare commodity. Our customers in healthcare, financial services, and telecommunications aren't just looking for "smart" bots; they are looking for resilient, compliant, and secure partners.

That is why I am incredibly proud to announce that ASAPP has officially received the HITRUST Certification. This milestone is a significant addition to our existing arsenal of certifications and our ongoing compliance with standards such as SOC 2 Type 2, PCI DSS, HIPAA, CCPA, and GDPR. By integrating the HITRUST framework into our security posture, we are further consolidating our position as a trusted AI platform for the enterprise.

Read the full announcement in our official press release.

What is HITRUST, and Why Does It Matter?

For the uninitiated, the HITRUST (Health Information Trust Alliance) framework is the "gold standard" for information protection in the healthcare space. While many security certifications provide a "point-in-time" snapshot, HITRUST is a rigorous, threat-adaptive framework that maps to dozens of global standards, including HIPAA, NIST, and ISO.

This is a focused, validated certification that verifies an organization has implemented foundational cybersecurity controls. By achieving this, ASAPP has demonstrated that our AI-native platform doesn’t just perform—it protects entrusted data.

Security as an Enabler of Innovation

Many see security and compliance as "speed bumps" to innovation. At ASAPP, we see them as the engine.

When a contact center adopts our Customer Experience Platform (CXP), including GenerativeAgent®, they are entrusting us with their most valuable asset: customer data. The HITRUST certification provides a verified layer of validation that:

  • Foundational Controls are Active: Our internal processes for data handling, access control, and network security meet the highest industry benchmarks.
  • We are Threat-Adaptive: The HITRUST framework is designed to evolve alongside emerging cyber threats, meaning our defenses are proactive, not just reactive.
  • Transparency is Non-Negotiable: This certification is a third-party validation. You don't have to take our word for it; the proof is in the audit.

Empowering the Agentic Enterprise

As we move toward the "agentic enterprise"—where AI agents handle complex, end-to-end customer journeys - the surface area for risk increases. Traditional "deterministic" bots were simple; modern AI is dynamic. This dynamism requires a new kind of trust.

By integrating HITRUST standards into our CXP (Customer Experience Platform), we are removing the friction of security reviews for our clients. Whether you are a large health insurer or healthcare provider, this certification informs and simplifies your vendor risk management (TPRM) process. It tells your IT, Compliance and Legal teams that ASAPP speaks the language of enterprise-grade security.

Achieving this milestone was a disciplined team effort. I want to thank our auditing partners at Schellman for their professional and thorough assessment throughout this process. I also want to recognize the ASAPP Trust team; their steady work behind the scenes ensures that security remains a fundamental part of our product DNA rather than an afterthought.

The Road Ahead

Achieving the HITRUST certification is a milestone, but it is not the finish line. In the security and compliance world, there is no such thing as "done."

Our roadmap includes continuous evolution toward more complex certifications and further refining our AI Safety Guardrails. We are committed to ensuring that every interaction powered by ASAPP is not only accurate and personalized but safe by design.

For more information about our security and trust transparency, please view our Security Trust Portal at trust.asapp.com and our AI Transparency Portal at trust.asapp.com/ai.

Trust is built in drops and lost in buckets. Today, we’ve added a significant drop to that bucket. We are excited to continue this journey with you - building an automated future that is as secure as it is intelligent and delightful.

Stay up to date

Sign up for the latest news & content.

Thank you for subscribing.
Oops! Something went wrong while submitting the form.

Loved this blog post?

About the author

Khash Kiani
Head of Security, Trust, and IT at ASAPP

Khash Kiani is the Head of Security, Trust, and IT at ASAPP, where he ensures the security and integrity of the company's AI products and global infrastructure, emphasizing trust and safety for enterprise customers in regulated industries. Previously, Khash served as CISO at Berkshire Hathaway's Business Wire, overseeing global security and audit functions for B2B SaaS offerings that supported nearly 50% of Fortune 500 companies. He also held key roles as Global Head of Cybersecurity at Juul Labs and Executive Director and Head of Product Security at Micro Focus and HPE Software.

Explore our latest blogs