Comparison Overview

Haven Place Doulas

VS

Paycare

Haven Place Doulas

None, None, Boston and Surrounding Areas, MA, US, None
Last Update: 2025-11-26
View Profile
Between 750 and 799
www.havenplacedoulas.com

Is the thought of navigating the challenges of pregnancy and postpartum life leaving you feeling overwhelmed? The journey of pregnancy and childbirth can be transformative yet daunting. Many families face uncertainty, fear, and the pressure of making informed decisions during this pivotal time. You don’t have to face it alone. We’re here to provide the support and guidance you need. With a deep-rooted passion for maternal health, I’ve had the privilege of supporting over 50 families in Massachusetts as a Birth and Postpartum Doula and the CEO of Haven Place Doulas. At HPD, we believe that every family deserves personalized care tailored to their unique needs and circumstances. Our team brings a diverse range of skills and expertise, including: - Expertise in Health Information Management: Ensuring you receive evidence-based, accurate care. - Strong Emotional Intelligence: Offering compassionate support during vulnerable moments. - Proficiency in Communication and Advocacy: Empowering families to make informed choices. - Problem-Solving and Multitasking: Addressing challenges effectively and with ease. - Cultural Competency: Delivering care tailored to the unique needs of diverse families. At Haven Place Doulas, we are committed to creating a nurturing environment where every family feels empowered and supported throughout their journey. Let’s work together to create a positive and fulfilling experience for your family. Book a call or send us a message today—we’re here to support you!

NAICS: 923
NAICS Definition: Administration of Human Resource Programs
Employees: 2
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Paycare

Paycare House, George Street, Wolverhampton, West Midlands, WV2 4DX, GB
Last Update: 2025-11-27
Between 750 and 799
http://www.paycare.org/

We’re Paycare, a not-for-profit Health Cash Plan provider which has been helping businesses just like yours attract, retain and reward their workforce for over 140 years. Based proudly in Wolverhampton since 1874, but working with organisations across the whole of the UK, we passionately believe that people are a company’s most important and valuable asset, and we know just how investing in them can bring huge benefits to your business. Through providing access to cost-effective health and wellbeing solutions through our range of Health Cash Plans, we support you in helping to improve your team’s overall quality of life by giving them the opportunity to claim money back on everyday healthcare treatments – not only supporting their physical and mental wellbeing, but their financial health too. With growing recognition of the strong link between healthy, happy staff and higher levels of productivity, lower levels of absence, and an increase in overall morale, we have developed a range of Health Cash Plans to support organisations of all shapes, sizes and sectors – enabling employees to claim back 100% of what they spend on everyday healthcare treatments (up to a specified annual limit), including everything from optical and dental to physiotherapy and reflexology. And, as an organisation with people at the very heart of everything we do, not only are we wholly committed to supporting businesses look after their valued staff, but we are dedicated to reinvesting money from our premiums back into the business, as well as the wider community. So, for every other spare penny not spent on enhancing services for our Policyholders, we donate it to worthwhile charities, initiatives and causes, and to date, we’ve donated more than £2,000,000 UK-wide. If you’re interested in finding out more about the very real value of a Health Cash Plan to your business and the benefits of joining the Paycare family, do get in touch with us on 01902 371010 or visit www.paycare.org

NAICS: 923
NAICS Definition:
Employees: 35
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/haven-place-doulas.jpeg
Haven Place Doulas
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/paycare.jpeg
Paycare
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Haven Place Doulas
100%
Compliance Rate
0/4 Standards Verified
Paycare
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Health and Human Services Industry Average (This Year)

No incidents recorded for Haven Place Doulas in 2025.

Incidents vs Health and Human Services Industry Average (This Year)

No incidents recorded for Paycare in 2025.

Incident History — Haven Place Doulas (X = Date, Y = Severity)

Haven Place Doulas cyber incidents detection timeline including parent company and subsidiaries

Incident History — Paycare (X = Date, Y = Severity)

Paycare cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/haven-place-doulas.jpeg
Haven Place Doulas
Incidents

No Incident

https://images.rankiteo.com/companyimages/paycare.jpeg
Paycare
Incidents

No Incident

FAQ

Haven Place Doulas company demonstrates a stronger AI Cybersecurity Score compared to Paycare company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Paycare company has disclosed a higher number of cyber incidents compared to Haven Place Doulas company.

In the current year, Paycare company and Haven Place Doulas company have not reported any cyber incidents.

Neither Paycare company nor Haven Place Doulas company has reported experiencing a ransomware attack publicly.

Neither Paycare company nor Haven Place Doulas company has reported experiencing a data breach publicly.

Neither Paycare company nor Haven Place Doulas company has reported experiencing targeted cyberattacks publicly.

Neither Haven Place Doulas company nor Paycare company has reported experiencing or disclosing vulnerabilities publicly.

Neither Haven Place Doulas nor Paycare holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Haven Place Doulas company nor Paycare company has publicly disclosed detailed information about the number of their subsidiaries.

Paycare company employs more people globally than Haven Place Doulas company, reflecting its scale as a Health and Human Services.

Neither Haven Place Doulas nor Paycare holds SOC 2 Type 1 certification.

Neither Haven Place Doulas nor Paycare holds SOC 2 Type 2 certification.

Neither Haven Place Doulas nor Paycare holds ISO 27001 certification.

Neither Haven Place Doulas nor Paycare holds PCI DSS certification.

Neither Haven Place Doulas nor Paycare holds HIPAA certification.

Neither Haven Place Doulas nor Paycare holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.

Published
Date
2025-11-26
Updated
Date
2025-11-26
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References