Get Well Achieves HITRUST Risk-based, 2-year (r2) Certification and SOC 2 Type II Attestation, Demonstrating the Highest Level of Information Assurance at Enterprise Scale

HITRUST Risk-based, 2 year (r2) Certification and SOC 2 Type II Attestation validate GW RhythmX’s commitment to strong cybersecurity and meeting key regulations to protect sensitive data across enterprise-scale healthcare environments.

(Palo Alto, Calif., January 27, 2026) – Get Well, a part of GW RhythmX which is the industry’s leading AI-native company revolutionizing care delivery, and patient engagement and improving financial performance for health systems, today announced that key solutions of its Get Well platform portfolio have earned HITRUST Risk-based, 2-year (r2) Certified status for information security and achieved a SOC 2 Type II attestation. 

Together, these assurances reinforce Get Well’s position as one of the very few platforms in the healthcare industry delivering enterprise-grade, risk-based security at enterprise scale across patient engagement and clinical workflow solutions – providing health systems with a level of trust, rigor, and operational maturity not commonly available in this category.  

The HITRUST Risk-based, 2-year (r2) Certified status demonstrates that the organization’s Get Well Inpatient, Get Well Loop, and Get Well Rounds+ solutions, delivered through our enterprise precision care AI platform, have met demanding regulatory compliance and industry-defined requirements and are appropriately managing risk. This achievement places GW RhythmX in an elite group of organizations worldwide that have earned this certification. By including federal and state regulations, standards, and frameworks, and incorporating a risk-based approach, the HITRUST Assurance Program helps organizations address security and data protection challenges through a comprehensive and flexible framework of prescriptive and scalable security controls.  

In addition, Get Well’s SOC 2 Type II attestation provides independent validation that the company’s controls related to security, availability, and confidentiality are operating effectively over time, reinforcing its commitment to protecting sensitive clinical, operational, and patient data in complex, enterprise-scale healthcare environments. 

Certification scope and hosting environment include: 

  • Get Well Inpatient residing in Amazon Web Services (AWS) – East 
  • Get Well Loop residing in AWS – East and AWS – West 
  • Get Well Rounds+ residing in AWS – East 
  • AWS – West Data Center, managed by Amazon Web Services, located in Bend, Oregon, United States of America 
  • AWS – East Data Center, managed by Amazon Web Services, located in Ashburn, Virginia, United States of America 

“Organizations like ours are continually under pressure to address current and emerging threats and meet complex compliance, information protection, and privacy requirements,” said Jeremy Lynch, Chief Information Security Officer at Get Well, a part of GW RhythmX. “We are pleased to demonstrate to our customers the highest standards for data protection and information security by achieving the rigorous HITRUST Risk-based, 2-year Certification and maintaining our SOC 2 Type II attestation, supporting secure innovation at enterprise scale.” 

“The HITRUST Assurance Program is rigorous and reliable because of the comprehensiveness of control requirements, depth of review, and consistency of oversight,” said Bimal Sheth, Executive Vice President, Standards Development & Assurance Operations, HITRUST. “HITRUST Risk-based, 2-year (r2) Certification demonstrates GW RhythmX is taking the most proactive approach to cybersecurity, data protection, and risk management.” 

As healthcare organizations increasingly adopt AI to unify fragmented data and turn intelligence into real-time action, trust is no longer optional, it is foundational. Get Well, a part of GW RhythmX, is defining a new Health AI category by combining patient engagement, data aggregation and medical-grade AI on our enterprise precision care AI platform, designed to meet the compliance expectations of the most sophisticated healthcare systems. 

For more information about Get Well and GW RhythmX’s approach to security, compliance and trust, visit https://www.getwellnetwork.com/.  

About GW RhythmX and Get Well 
Get Well and RhythmX AI have merged to form GW RhythmX, defining a new category of AI-powered precision care and patient engagement. The company combines market-leading AI precision care technology with extensive trusted patient engagement leadership to help health systems deliver the right care, at the right time, through the right clinician and channel. Its solutions are deployed across more than 150 health systems, touching more than 85M patients including 8M U.S. military veterans. The company’s award-winning solutions were recognized again in 2024 by KLAS Research, Fierce Healthcare, and AVIA Marketplace. A SymphonyAI Group company, GW RhythmX leverages various firm assets, including $1B+ in R&D investment, longitudinal data related to 300 million patients, 4.4 billion total annual claims, and 1.8 million healthcare professionals at more than 3,000 facilities globally. 

GW RhythmX Media Contact: 
Christopher Gale 
[email protected] 

A doctor in a white coat talks to an older woman. The image showcases icons: Screening alert for Sofie R., Navigation for diabetes management, and Education with a video prompt. Room #51 highlights tailored health plan needs to enhance member experience.

Get Well 360 empowers healthcare organizations to deliver the digital experience that consumers expect across every step of the healthcare journey - in the community, at the point of care, and beyond.

Schedule a Demo