In accordance with accepted Privacy frameworks and regulations, this website stores cookies on your computer. These cookies are used to collect information about how you interact with Lighthouse’s website and allow us to better inform and communicate about the topics you actually care about. Lighthouse uses this information in order to improve your experience and for analytics and metrics. View Privacy Policy

Coronavirus Preparedness At Lighthouse

Lighthouse eDiscovery Achieves HIPAA and ISO 27001 Compliance

Company leads industry in security with new certifications

SEATTLE, Wash. (Dec. 20, 2017) – Lighthouse eDiscovery, a leader in technology-enabled ediscovery services and consulting, today announced compliance with the Health Insurance Portability and Accountability Act (HIPAA) and ISO 27001. These assessments, validated by an independent data security firm, are an extension of compliance from Lighthouse’s merger with Discovia and cover electronic data discovery, forensic data collection and analysis, electronic data hosting, advisory services, data processing and production services.

“Data security is of utmost importance to our clients,” said Mark King, chief information officer at Lighthouse eDiscovery. “These assessments demonstrate our commitment to provide the most reliable security infrastructure to our clients. Our dedicated IT security team maintains sophisticated structural and environmental controls that evolve based on changing standards, new threat models, and client requirements.”

HIPAA requires organizations engaged in handling electronic protected health information (ePHI) to implement the necessary systems, procedures, and policies to secure such information. Risk analysis and management is an ongoing process, in which compliant entities must regularly review records to track access to ePHI and detect security incidents, periodically evaluate the effectiveness of security measures, and regularly reevaluate potential risks to ePHI.

The stringent security assessment by an independent auditor reviewed Lighthouse’s compliance in its data management, data hosting and data security operations in the following areas:

  • Administrative safeguards
  • Physical safeguards
  • Technical safeguards
  • Breach notifications

ISO 27001 is a globally recognized standard for the establishment and certification of an information security management system. The standard specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented ISMS within the context of the organization’s overall business risks. It sets forth a risk-based approach that focuses on adequate and proportionate security controls that protect information assets and give confidence to interested parties.

These assessments were performed by Schellman & Company, LLC, an ANAB and UKAS accredited certification body based in the United States.

For more information about this announcement, please contact

About Lighthouse eDiscovery

Lighthouse eDiscovery guides clients through every aspect of e-discovery, from the simplest projects to the most complex, risky matters. Our experienced, dedicated client teams deliver with high velocity, unparalleled quality, and a pragmatic focus on lowering overall e-discovery costs. We develop highly innovative applications built on leading third-party technology, making it more effective and easier to use, and we custom-engineer solutions to specific client requirements. Our client-aligned approach has enabled us to form long-term relationships with many of the world’s leading corporations and top law firms who rely on Lighthouse to meet all of their e-discovery needs. For more information, visit