HIPAA Compliant Data Centers
If your company is storing any sensitive patient information or health records, the data center that hosts your data also needs to be HIPAA compliant.
Online Tech’s HIPAA compliant hosting can provide the physical, environmental, network and infrastructure security you need to protect patient information and meet HIPAA compliance standards.
After completing a HIPAA audit against the latest OCR HIPAA Audit Protocol, Online Tech was found to be 100% compliant, meaning we guarantee our facilities operate and implement HIPAA compliant controls and security measures.
Find out more about our HIPAA compliant hosting solutions and how we can customize them to fit your needs:
- HIPAA compliant colocation with high availability power and offsite backup options.
- HIPAA compliant dedicated servers with fully managed services.
- HIPAA compliant private clouds with fully managed services.
- HIPAA compliant disaster recovery and offsite backup.
HIPAA Compliant Physical Security
Online Tech’s physical security means only authorized personnel have limited access to clients’ private locked racks, suites and cages. Security administration is also required for each client with dual-identification control access to the data centers and colocation racks. We maintain environmental control with 24x7 monitoring, logged surveillance and multiple alarm systems to alert us to any disruptions.
HIPAA Compliant Network Security
Sensitive infrastructure, such as managed servers, cloud, power and network infrastructure are also protected by restricted access. Our redundant routers, switches and paired universal threat management devices meet HIPAA compliant requirements to protect sensitive information on our network. With a Virtual Private Firewall or Dedicated Firewall, our Intrusion Detection Service (IDS) can pinpoint any security breaches and notify us immediately for responsive action.
HIPAA Compliant Data Security
The HITECH Act requires private accessibility whenever you or your patients request it. As your managed data center operator, Online Tech never accesses your sensitive data; we only provide a secure infrastructure and high availability hosting with HIPAA-audited facilities.
High Availability Infrastructure
To ensure uninterrupted availability of protected health information, our fully redundant networks and power are built for automatic failover, guaranteeing your critical data and applications are always accessible. Our Michigan data centers are interconnected by Gigabit fiber and located 53 miles apart with multiple Internet Service Providers (ISPs), providing an ideal infrastructure for data backup and disaster recovery plans, meaning your data will be recoverable even in the event of a disaster.
HIPAA Trained Staff
Every employee at Online Tech is trained to understand and follow HIPAA compliance standards and the importance of protecting sensitive information. We consider ourselves the guardian of your IT infrastructure, but understand the explicit boundaries of that responsibility to maintain privacy and security.
HIPAA Compliant Services
Neither HIPAA nor HITECH call for specific technical measures to assure data is available, accurate and secure. However, we recommend many of the same procedures and technologies we deploy for ourselves and for which we have had a HIPAA audit to clients who are going to be audited/required to pass a HIPAA audit. This includes:
- Private Firewall services (either a Virtual or Dedicated Firewall) with VPN for remote access
- Managed Cloud Server (good for the availability issue)
- Production: Separate database and web servers
- Separate test server (can use one for web and DB but not same as production)
- Offsite Backup at a minimum, IT Disaster Recovery is better
- SSL certificates and HTTPS for all web-based access to PHI
- Setup private IP addresses