Every organization that handles the electronic protected health information (ePHI) of US citizens must be concerned with federal healthcare compliance: that is, abiding by the parameters established in the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the Health Information Technology for Economic and Clinical Health Act of 2009 (HITECH). A central element of HIPAA federal law is the Security Rule, which mandates implementation of appropriate cybersecurity measures to protect digital health records.
How Does SFTP Help With HIPAA Compliance?
Secure file transfer protocol (SFTP), a component of the secure shell (SSH) protocol, is useful in maintaining compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA). SFTP uses encryption and algorithmic hash functions to protect information from unintended viewing or theft, and is considered a best-practice way to securely send files.
Like other standard protocols and technologies that are deployed to maintain HIPAA-compliant security, SFTP is not required specifically by the agency that regulates it, the Department of Health and Human Services. (The HHS regulates the law flexibly, allowing organizations to make their own specific decisions on means.) While you certainly do not have to use SFTP in order to stay compliant, it is a standard and straightforward way to meet the need for secure HIPAA file transfer.
What you should know before enabling IPv6
As our members roll out IPv6 on our Cloud Platform, I thought it would be a good idea to share some of our findings that will help make jumping into the IPv6 universe easier for you. Hopefully, this saves you some time and effort in your IPv6 deployment.
Most people deploying IPv6 are using dual-stack implementations – meaning they have IPv4 and IPv6 running and allowing traffic on both types of network addresses. We assume you’re already familiar with IPv4 and are now looking to start using IPv6.
Announcing IPv6 Support in USA-EAST-3 (Ashburn, VA)
We are excited to announce that our newest Atlantic.Net’s Public Cloud location, USA-EAST-3 (Ashburn, VA), now supports IPv6 (Internet Protocol Version 6). Additional locations will gain support for IPv6 in the coming months. 16 IPv6 addresses are offered at no charge with each new or existing Cloud Server.
13 HIPAA-Compliant SaaS Tools to Increase Productivity
Streamlining workflow and increasing productivity can be tricky for any business. For companies in heavily-regulated industries like healthcare, it can be downright daunting.
The Health Insurance Portability and Accountability Act (HIPAA), which was enacted in 1996, requires all healthcare providers to meet strict data privacy and security requirements in order to safeguard protected health information (PHI).
How to Best Mitigate Cybersecurity Risks and Protect Your Data
In the Internet age, data is an increasingly valuable asset; data on all aspects of modern life is captured, stored and processed online. Data warehousing and machine learning techniques have enabled business organizations to use this data to learn customer habits and predict future growth. Due to surging recognition in the value of data, it is especially important for individuals, businesses and enterprises to push a security-first agenda, mitigate cybersecurity risks, and protect all business-critical or otherwise sensitive data.
HIPAA Compliant Developer Guide
HIPAA Compliant IT Infrastructure Guide
Cloud & Managed Server Hosting for Healthcare Professionals
Important Healthcare Standards
Three critical standards or forms of compliance of concern to healthcare companies are HIPAA (Health Insurance Portability and Accountability Act), HITECH (Health Information Technology for Economic and Clinical Health Act) and SSAE 18 (Statements on Standards for Attestation Engagements No. 18), the update of SSAE 16.
Beyond finding hosting that is compliant with those standards, you also have to figure out the extent to which you want to include cloud in your architecture. How can you become compliant, and how should you approach decisions on cloud and server management?
GDPR Compliance for Global Managed Service Providers
The General Data Protection Regulation (GDPR) was introduced on 25th May 2018. Its purpose is to enhance the data rights of individuals and enforce several obligations upon institutions that manage and process data. GDPR compliance has a wide-reaching scope which is likely to affect many businesses throughout the world.
