Consensus Earns Elite HITRUST Security Stamp, Raising Bar for Data Trust

LOS ANGELES, CA – January 27, 2026 – In a move that reinforces its commitment to data security, Consensus Cloud Solutions announced today that two of its core platforms, eFax Corporate® and jSign®, have once again achieved the HITRUST Risk-based, 2-year (r2) Certified status. The re-certification places the digital cloud fax and electronic signature solutions in an elite group of technologies validated against the industry’s most stringent security framework, a critical distinction in an era of escalating cyber threats.

For customers in highly regulated industries such as healthcare, finance, and the public sector, the announcement signals that the infrastructure handling their most sensitive data exchange meets a benchmark widely considered the gold standard for information protection. The achievement underscores the company's focus on building a unified, secure ecosystem for enterprise workflows.

The 'Gold Standard' in Data Protection

The HITRUST r2 certification is far more than a simple compliance check. It represents the highest level of assurance within the HITRUST framework, a grueling and comprehensive process designed to validate an organization's security and risk management posture. Earning this status requires a deep and sustained commitment, a fact that distinguishes it from other security attestations.

To achieve r2 certification, organizations must demonstrate robust controls across a minimum of 19 different domains, spanning everything from endpoint protection and vulnerability management to data encryption and incident response. The assessment goes beyond simply having policies in place; it evaluates controls on a five-level maturity scale, demanding that procedures are not only documented but also fully implemented, measured, and actively managed. This rigorous evaluation, which can involve assessing hundreds or even thousands of specific control requirements tailored to the organization's risk profile, often takes compliance teams months to complete.

“Earning HITRUST Certification demonstrates Consensus’ commitment to managing information risk and protecting sensitive data through a rigorous, proven assurance process,” said Gregory Webb, CEO of HITRUST. “This achievement reflects the organization’s proactive approach to cybersecurity and trust.”

What makes the HITRUST framework particularly powerful is its role as a harmonizing force. It integrates and maps to over 60 authoritative sources, including NIST, ISO, HIPAA, and PCI DSS. For a global company like Consensus, this means it can meet a complex web of regulatory and security requirements through a single, unified framework, providing customers with a clear and reliable assurance of compliance.

Fortifying a Competitive Edge in Crowded Markets

This re-certification is not just a technical achievement; it is a significant strategic differentiator in two highly competitive markets. For eFax Corporate, which has maintained its HITRUST status continuously since 2019, the validation solidifies its long-standing position as a leader in secure digital faxing. In a market with established players like OpenText and Biscom, the explicit and continuously renewed HITRUST r2 certification provides a clear advantage, especially when courting healthcare organizations that mandate this level of vendor assurance for handling Protected Health Information (PHI).

Perhaps more significantly, the re-certification for jSign carves out a unique niche in the bustling electronic signature space. The press release highlights it as “one of the only HITRUST-validated electronic signature platforms available.” While market leaders like DocuSign and Adobe Sign boast an array of security credentials like SOC 2 and ISO 27001, the specific r2 certification is a rarer and more demanding credential. For organizations that have adopted the HITRUST framework internally—a rapidly growing number in the healthcare sector—the ability to use a pre-certified e-signature platform drastically simplifies vendor risk assessment and ensures end-to-end compliance for critical document workflows.

A Proactive Defense in a Complex Cyber Landscape

The re-certification arrives at a time when the cybersecurity landscape is, as Consensus CTO Jeffrey Sullivan noted, growing “more complex.” Data breaches are not only more frequent but also more sophisticated, making proactive and verifiable security measures a board-level concern. The HITRUST r2 certification, which is valid for two years but requires a mandatory interim assessment, demonstrates a commitment to continuous security improvement rather than a one-time effort.

“Earning the HITRUST r2 re-certification for both eFax Corporate and jSign is a testament to our proactive security-first culture,” said Sullivan. “By setting this standard, we empower our customers to operate critical systems with the confidence that their sensitive data is shielded by the industry's most stringent security framework.”

This proactive stance is crucial for the industries Consensus serves. Healthcare, in particular, remains a top target for cybercriminals. By providing HITRUST-certified tools, Consensus helps its clients fortify their own defenses and meet their regulatory obligations under HIPAA. For financial services and government agencies, the certification provides similar assurances, validating that the tools they use for exchanging sensitive information are built on a foundation of verified security controls.

A Unified Framework for Trust in Digital Workflows

By securing HITRUST r2 status for both its flagship digital fax platform and its electronic signature solution, Consensus Cloud Solutions offers more than just two secure products. It provides a unified and trusted infrastructure for modern digital workflows. An enterprise can now manage the entire lifecycle of a critical document—from secure transmission via cloud fax to legally binding electronic signature—all within an ecosystem validated by the same high-level security standard.

This integrated approach simplifies compliance and reduces risk for customers. It eliminates the need to vet multiple vendors with varying security postures and provides a seamless, secure experience for users. In an economy where digital transformation is accelerating, the ability to build and operate workflows with verifiable, end-to-end security is paramount. The continuous validation by HITRUST demonstrates that for Consensus, protecting customer data is not just a feature, but the fundamental principle upon which its technology is built.