hipaa statement: sos online backup

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) was the result of efforts by the federal government to ensure healthcare data practices permitted ease for patients to move jobs, insurance and healthcare providers. As deﬁned by 45 CFR §164.312 of HHS’ HIPAA, SOS Online Backup assist healthcare providers to be HIPAA compliant in the following ways: • SOS Online Backup, in all cases, creates, receives and transmits only encrypted data. SOS uses a three-tiered AES encryption system which encrypts data on the user’s computer, again in transit and ﬁnally when at rest in storage at SOS’s datacenters. • This data cannot be read while in transit, or even on the SOS servers, as long as the user (health care provider) does not compromise the password (for example, writing the password on a sticky note and attaching it to a computer screen in open view.) • SOS servers are located in a SAS 70 II datacenters protected by gated access, 24 x 7 x 365 on-site staffed security and technicians, electronic card key access, and strategically placed security cameras both inside and outside the building. • SOS Online Backup is an automated offsite backup and protects data against hardware malfunction, accidental deletion, virus attacks, theft and natural disasters. • SOS’s Ultrasafe allows the user (health care provider) to store their data securely such that no one including SOS engineers will be able to access their data. A “business associate” agreement is not required with SOS. These agreements are between covered entities where there IS a reasonable probability that Protected Health Information can be reviewed. Privacy regulations contained in HIPAA apply to “Electronic Private Health Information” and SOS does not possess this. As SOS cannot and does not examine the data, no business associate agreement is required. SOS HIPAA STATEMENT SOS-HIPAA-1.2/09 © SOS Online Backup. All rights reserved. For more information or questions, email: [email protected] or visit us at www.sosonlinebackup.com/privacy.htm

Upload: online-data-backup-info

Post on 19-Jul-2015

759 views

Category:

Technology

0 download

Report

Download

Embed Size (px):

TRANSCRIPT

Page 1: HIPAA Statement: SOS Online Backup

As defined by 45 CFR §164.312 of HHS’ HIPAA, SOS Online Backup assist healthcare providers to be HIPAA compliant in the following ways:

• SOSOnlineBackup,inallcases,creates,receivesandtransmitsonlyencrypteddata. SOSusesathree-tieredAESencryptionsystemwhichencryptsdataontheuser’s computer,againintransitandfinallywhenatrestinstorageatSOS’sdatacenters.

• Thisdatacannotbereadwhileintransit,orevenontheSOSservers,aslongasthe user(healthcareprovider)doesnotcompromisethepassword(forexample,writing thepasswordonastickynoteandattachingittoacomputerscreeninopenview.)

• SOSserversarelocatedinaSAS70IIdatacentersprotectedbygatedaccess,24x7 x365on-sitestaffedsecurityandtechnicians,electroniccardkeyaccess,andstrategically placedsecuritycamerasbothinsideandoutsidethebuilding.

• SOSOnlineBackupisanautomatedoffsitebackupandprotectsdataagainsthardware malfunction,accidentaldeletion,virusattacks,theftandnaturaldisasters.

• SOS’sUltrasafeallowstheuser(healthcareprovider)tostoretheirdatasecurelysuch thatnooneincludingSOSengineerswillbeabletoaccesstheirdata.

A“businessassociate”agreementisnotrequiredwithSOS.TheseagreementsarebetweencoveredentitieswherethereISareasonableprobabilitythatProtectedHealthInformationcanbereviewed.

PrivacyregulationscontainedinHIPAAapplyto“ElectronicPrivateHealthInformation”andSOSdoesnotpossessthis.

AsSOScannotanddoesnotexaminethedata,nobusinessassociateagreementisrequired.

SOS HIPAA STATEMENT

SOS-HIPAA-1.2/09©SOSOnlineBackup.Allrightsreserved.

Formoreinformationorquestions,email:[email protected]/privacy.htm

HIPAA Compliance Manual - tasconline.com HIPAA...HIPAA Compliance Manual 3 What is HIPAA? What is HITECH? HIPAA is a federal law that governs entities that handle “Protected Health

HIPAA COMPLIANCE - NetWatcherNetWatcher HIPAA Compliance eBook Preparing for the Client-Driven Cybersecurity Audit HIPAA Citation HIPAA Security Rule Standard Implementation Spec Requirement

HIPAA Certification Flyer - HIPAA Training, Official website of

HIPAA Business Associates February 2017 - Holland & Hart LLP · Business HIPAA Associates. HIPAA Liability • HIPAA penalties apply to: – Covered entities • Healthcare providers

HIPAA Compliance Template Suites - HIPAA Training...HIPAA Compliance Template Suites Covered Entity HIPAA Compliance Tool (Less than 50 employees) 1) Small Business HIPAA Security

HIPAA Privacy Training1 HIPAA Privacy: HOW IT AFFECTS YOU !!!

Flyer HIPAA Certification - HIPAA Training