How is compliance handled in the Cloud for Federal customers?

In this podcast, MJ DiBerardino, CEO at Cloudnexa, discusses compliant migrations into the AWS Cloud for federal customers and the importance of moving workloads to the Cloud.

To view the podcast visit carahsoft.

Do I need HIPAA Compliance?

If your business is engaged with patient data, you likely need to be concerned about HIPAA compliance. As an overview, the Health Insurance Portability and Accountability Act of 1996 (HIPAA) applies to health care providers engaged in certain electronic transactions, health plans, and businesses that provide services that involve access to Protected Health Information (PHI). PHI data is defined as personal health information held by covered entities and gives patients an array of rights with respect to that information. At the same time, the Privacy Rule is balanced so that it permits the disclosure of personal health information needed for patient care and other important purposes.

With the power of AWS and Cloudnexa by your side, we can bring you into compliance to securely process, store, and transmit PHI data. Cloudnexa has taken the extra steps with AWS and is an audited Healthcare Premier Consulting Partner, one of just a few to have achieved the unique AWS Healthcare Competency. You can learn more about this program on the AWS website site at Amazon Health Care Competency. Here you will find different Partners that have earned this competency, all with different capabilities to fit the needs of just about any customer requirement

Business Associate Agreement (BAA)

All HIPAA applications deployed in the cloud require the customer to sign a Business Associate Agreement (BAA). Customers who execute a BAA with Cloudnexa may use any AWS service in an account designated as a HIPAA Account, but they may only process, store and transmit PHI using the HIPAA-eligible services defined in the AWS BAA as boundary services.

Cloudnexa can sign a BAA with a customer to deploy on AWS, but is also a HIPAA certified company and audited Amazon partner carrying the AWS HealthCare Competency.

Compliance Tools

HIPAA was expanded in 2009 by the Health Information Technology for Economic and Clinical Health (HITECH) Act which establish a set of federal standards intended to protect the security and privacy of PHI. HIPAA and HITECH impose requirements related to the use and disclosure of PHI and appropriate safeguards to protect PHI data through the usage of centralized event management as well as anti-virus, malware intrusion detection systems.

Leverage Cloudnexa’s compliance as a service offering today to simplify your integration with our partners and Trend Micro’s Deep Security as a Service to achieve the necessary PHI security safeguards.

AWS Reduces Instance Cost Complexity

HIPAA Compliance on AWS no longer requires Dedicated EC2 instances to run in your AWS account. This change can significantly reduce your cost of HIPAA deployments within AWS and Cloudnexa. On average, our customers save around 10% on EC2 instances plus the cost of the AWS dedicated instance region fee which is currently $2 an hour as of writing this.

Picking a Service Partner

AWS Operates as a shared responsibility mode, they provide pre-certified services that can be used for HIPAA related compliance workloads. While the AWS Service offerings are great, they will not assume risk as to how your application stacks are configured within an AWS Account and if it falls within compliance. With Cloudnexa being a HIPAA compliant company as well as maintaining our Amazon Health Care Competency, we can help and guide you through all the necessary steps to achieve the security and peace of mind needed for your PHI data.

We offer fixed priced cloud hosting options with our Business offering. Get started today with preconfigured packages, or customize your environment with our public quoting tool.

See our previous post on how Cloudnexa can simplify your HIPAA Compliance deployments into AWS.

For more information check out the AWS HIPAA Compliance White Paper.

Medical facilities and the companies that provide services to them know full-well HIPAA compliance codes are unavoidable, with offices being required to keep data on hand for seven years. The problem is, many of the backup models used today are archaic and cluttered, not to mention some offices lack a plan B. With the capability and affordability of technology today, to not be prepared does not make sense.

The two most prevalent antiquated tactics are paper and tape backup, both of which involve storing hard data in boxes, or on tape, and sending records to third party management firms that store the information away in warehouses. Those plans can cause logistical nightmares. Worse yet, some facilities merely keep their data on servers literally in closets with no backup protection at all. That is a recipe for data disaster.

With Cloudnexa and AWS by your side, your medical facility’s data will always be secure. In the event you need to attain access, you can do so with the click of a mouse—rather than having to go through a warehouse full of boxes. Cloudnexa delivers the reliability your business needs to maintain continuity. It is your data, when you need it.

If your company is required to comply with HIPAA codes and you don’t have a backup plan, consider our cloud migration service for Philadelphia area healthcare facilities. And if you’re not in Southeastern Pennsylvania, get in touch because we can help you too. Data is especially sensitive in the medical industry, and it is reassuring to know that yours is protected.

Simplicity and Reliability Down to the 9’s

Everything is digitized, so rather than paying for a third party to store hard data in a physical facility, the cloud will become your more convenient, cheaper “warehouse.”

Cloudnexa integrates AWS services to make meeting HIPAA compliance simple. We encrypt data in transit and still, perform continuous data backups, and auditing to ensure your data is secure. In addition, we also provide HIPAA compliant cloud hosting for applications varying in size. Cloudnexa eliminates the complexities associated with storage, secure online backup and complying with HIPAA requirements.

One of AWS’s main benefits is its durability. The industry refers to their dependability as the “11 9’s,” meaning storage in their platform is guaranteed to be 99.99999999999 (that’s 11 9’s on the end) percent reliable. To put it in other terms, for every 10,000 pieces of info you store with AWS, one of them might disappear every 10 million years. If you put a file on AWS during the Triassic period, you might lose it tomorrow.

Entry Points Are Low

Cloudnexa makes backing up your medical data simple and affordable. Entry points are low enough for any sized facility to afford usage. Once we determine your business and IT goals and objectives, we will adjust our solution accordingly, making it even easier to reach compliance and performance optimization.

Hear It First Hand

One of our healthcare clients has increased productivity since starting to use the Cloudnexa AWS HIPAA solution. The company is required to set up a new infrastructure every time they get a new client, which theoretically involves weeks of work. With our solution, they can plug into a templated infrastructure and have their clients squared away in less than a day. Learn more about what our clients have to say about Cloudnexa’s AWS solution that takes the complexity out of compliance.

Whether you need cloud migration services in New York, LA or anywhere in between, we’ll make sure your records are safe and sound, for an affordable price.