HiPAA Compliant Hosting
$199.00

Introduction

As our business has grown, we’ve come to host many clients that transfer highly critical information that must remain confidential under HIPAA privacy standards. With this type of customer in mind, we have taken advantage of some of our industry-leading managed hosting tools to make HIPAA compliance-ready hosting easier than ever to attain.

Often, the consequences of the loss or compromise of this data could cause irreparable damage to a client’s reputation, if not even more serious legal penalties. In order to ensure our clients are protected, we have crafted the ideal plan, making sure technical controls, backup management, safeguards and physical security policies are in place, all to verify that your data is secured to HIPAA compliance standards and beyond.

All of our Data Centers are designed to provide you with the tools to ensure compliance physically, environmentally and across the entire network infrastructure in addition to providing around the clock HIPAA-trained Heroic Support® engineers, on-site, whenever you need them. Additionally, a Business Associate Agreement (BAA) is available upon request, which will require the acquisition of server configurations that meet minimum security requirements shown below.

Data Center Physical System Security

Minimize Risk of Loss and Theft

  • 24/7/365 Manned Facility
  • Closed Circuit TV Security Cameras
  • Monitored 24/7/365 by 3rd Party Security Company
  • Site Entrance Controlled by Electronic Perimeter Access Card System

Minimize Risk of Damage

  • High Security Facilities
  • Data Centers Privately Owned and Operated
  • Durable, Poured Concrete External Walls
  • Disaster Neutral Geographic Locations

Advanced Fire Prevention Infrastructure

  • Dry Pipe Preaction, Double Interlock System
  • NFPA 13 Compliant

Entry Security - Access Controls

  • Exterior Entrances Secured by Mantraps with Interlocking Doors
  • Access to the Data Center Space Requires Secure Credentials

Uninterruptible Power Supplies (UPS)

  • Multiple N+1 MPS Generators
  • Multiple Fuel Contracts Ensure Fuel Availability for Generators
  • Multiple N+1 UPS Systems with 30 Minute Minimum Runtime.
  • Server Chassis Feature Redundant Power Supplies (Available)
  • Server Chassis Have A/B Power Configurations (Available)
  • Redundant ASCO Closed Transition Bypass Isolation Transfer Switches
  • Capability to Provide Tier-4 Power
  • Four 10 Megawatt Feeds Available
  • Diverse Paths from Substation
  • 2N Power Available

SSAE-16 (formerly SAS70) & Safe Harbor Compliant

Security Zones

  • Office Space Separate from Data Center Space
  • Advanced Proximity Credentials Required to Access Data Center
  • All Employees Receive Full Background Check
  • Key Locked Physical Server Rack Enclosures Available
  • Component Level Redundancy Available for Hard Drives
  • Hot and Cold Spare On-site Servers Available

Network Configuration and Technical Security

Network Device Management

  • Hardware Cisco Firewall Devices Available with Full Management
  • Qualified Engineers Available 24/7/365
  • Assistance with Hardware Firewall Configuration
  • Outbound and Inbound Traffic Filtering Available
  • Intrusion Detection/Intrusion Prevention Modules Available
  • Network Redundancy Ensures Failover
  • Diverse Connectivity Fiber Paths Into Building
  • Dedicated Meet-Me Room
  • Bandwidth Co-Op solutions
  • Carrier Neutral
  • On-net transport to most major global cities

Remote VPN

  • Remote Secure VPN Implementations and Management Available
  • Encryption (Triple DES or AES)
  • Authentication (Site-to-Site VPN Tunnels) with Strong Passwords, Pre-Shared Key and Certificate
  • DMZ Implementations
  • Assistance with Log Management and Monitoring

.......More