hipaa statement: sos online backup
TRANSCRIPT
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was the result of efforts by the federal government to ensure healthcare data practices permitted ease for patients to move jobs, insurance and healthcare providers.
As defined by 45 CFR §164.312 of HHS’ HIPAA, SOS Online Backup assist healthcare providers to be HIPAA compliant in the following ways:
• SOSOnlineBackup,inallcases,creates,receivesandtransmitsonlyencrypteddata. SOSusesathree-tieredAESencryptionsystemwhichencryptsdataontheuser’s computer,againintransitandfinallywhenatrestinstorageatSOS’sdatacenters.
• Thisdatacannotbereadwhileintransit,orevenontheSOSservers,aslongasthe user(healthcareprovider)doesnotcompromisethepassword(forexample,writing thepasswordonastickynoteandattachingittoacomputerscreeninopenview.)
• SOSserversarelocatedinaSAS70IIdatacentersprotectedbygatedaccess,24x7 x365on-sitestaffedsecurityandtechnicians,electroniccardkeyaccess,andstrategically placedsecuritycamerasbothinsideandoutsidethebuilding.
• SOSOnlineBackupisanautomatedoffsitebackupandprotectsdataagainsthardware malfunction,accidentaldeletion,virusattacks,theftandnaturaldisasters.
• SOS’sUltrasafeallowstheuser(healthcareprovider)tostoretheirdatasecurelysuch thatnooneincludingSOSengineerswillbeabletoaccesstheirdata.
A“businessassociate”agreementisnotrequiredwithSOS.TheseagreementsarebetweencoveredentitieswherethereISareasonableprobabilitythatProtectedHealthInformationcanbereviewed.
PrivacyregulationscontainedinHIPAAapplyto“ElectronicPrivateHealthInformation”andSOSdoesnotpossessthis.
AsSOScannotanddoesnotexaminethedata,nobusinessassociateagreementisrequired.
SOS HIPAA STATEMENT
SOS-HIPAA-1.2/09©SOSOnlineBackup.Allrightsreserved.
Formoreinformationorquestions,email:[email protected]/privacy.htm