A commitment to employees, clients and community: The Bonadio Group’s response to COVID-19. View Here

Compliance and Attestation


We Offer IT Compliance in the Following Areas: 

GDPR Compliance

We provide a variety of GDPR services to satisfy the needs and requirements of your customers and clients including program readiness, implementation and training.

HIPAA and Healthcare Compliance 

Our HIPAA risk assessment process surpasses what is required under the HIPAA Rules to protect the information of the individuals you serve.

SOX404 Compliance and SOC Reporting

We can help you with multiple reporting options made available by the AICPA to allow you to demonstrate transparency to your customers, stakeholders and prospects including both SOX404 Compliance consulting and SOC attestation reporting options.

Cloud and Regulatory Compliance 

We offer a comprehensive yet cost-effective approach to ensuring that your internal controls related to financial reporting comply with aspects of the SOX act.

PCI DSS Compliance

Our PCI compliance assessments help businesses achieve and maintain PCI compliance in accordance with the PCI SSCs and Card Brands’ annual required audits.

HITRUST Compliance

We provide a variety of HITRUST CSF assessment types and services to satisfy your specific needs and requirements.

We Serve 

  • Financial Institutions
  • Healthcare 
  • Retail 
  • Higher Education
Latest Articles
John G Roman
Recent Article

Cybersecurity Protections Are Essential, Now More Than Ever

Read More
Jill Martucci
Recent Article

Vendor Management – Remaining Diligent During COVID-19

Read More
Gerald Archibald
Recent Article

Tax-Exempt Human Service Sector – COVID-19 Update

Read More
How Can We Help Move Your Business Forward?

Contact us to speak with one our industry experts today.