Trust & Security

At Spring Health, we are committed to our members coming first, and this is paramount in ensuring security and privacy within the Spring Health Platform. 

We employ processes and technologies across the organization to secure data, systems, and services from intentional and unintentional threats and malicious attacks. Our approach can be summarized as follows:  

  • Identifying and managing security risks to valuable organizational data, systems, and services
  • Protecting assets by developing, implementing, and operating appropriate levels of controls and safeguards
  • Employing situational awareness and monitoring capabilities to ensure the timely discovery and detection of security events
  • Preparing to take appropriate and decisive action when affected by security events
  • Developing plans and exercises to ensure the resilience of key organizational processes and the ability to return to normal operating conditions quickly and efficiently

Our security program incorporates industry standards in a layered, defense-in-depth approach. We govern our security program consistent with industry best-practice frameworks, which define how we operate on a day-to-day basis, conduct business with customers, and interact with our vendors and business partners. 

Spring Health is committed to continually improving and enhancing our security program to meet current and future challenges. As such, we will alter our program accordingly as needed and update this statement when required.

We invite you to check out our trust page at for more in depth information around our Security, Compliance, and Privacy posture.