Security Compliant Hosting & Cloud Provider
let Latisys help solve your compliance puzzle
In today’s digital age, information security is paramount and a critical consideration when deciding to outsource your IT infrastructure. Whether you are in the ecommerce business, if you host sensitive health or financial information, or if your organization simply demands the highest levels of security, you understand the role that compliance plays in demonstrating how you protect your data. At Latisys we understand the significance of meeting compliance standards that impact our clients. Our data center infrastructure is compliance-ready and is tested and audited annually by a 3rd party to ensure that the appropriate physical controls and information security policies are in place to protect your data and meet the following standards:
Service Organization Controls (SOC)
SOC Reports demonstrate that a service organization has established controls to accomplish the objectives of published trust and availability principles. All controls are defined by Latisys SOC and audited annually to confirm that Latisys consistently adheres to them. SOC Reports provide a level of assurance that “we do what we say we’ll do.”
Payment Card Industry Data Security Standard (PCI DSS)Mandated by all of the major card brands, any company that processes or stores credit card data must follow the prescriptive standards defined by the Payment Card Industry. Latisys’ physical security and information security policies are audited annually both to ensure that they are practiced in each of our nationwide data centers and to ensure that our managed firewall service is in compliance with the full scope of PCI DSS 2.0.
Health Insurance Portability & Accountability Act (HIPAA)Title II of this act, which was enacted by congress in 1996, holds anyone handling private health information accountable for protecting that information. The addition of HITECH specifies the technical safeguards that should be in place to protect information that is transmitted electronically. While there is no certifying authority for compliance with this standard, Latisys performs annual risk assessments against its infrastructure and provides clients with the assurance of a standard Business Associate Agreement (BAA).
Gramm-Leach-Bliley Act (GLBA)Also known as the financial modernization act of 1999, GLBA mandates that all financial institutions safeguard the private consumer information they acquire in the course of offering and providing financial and credit services. Much like HIPAA GLBA has no certifying authority, but annual risk assessments ensure physical controls and policies in place are adequate to meet the requirements set forth by the act.
We've prepared a guide covering some of the basic information an organization should have before undergoing any sort of compliance audit.
Ready to learn more?
Call 866-956-9594, chat live with a member of our team, or contact us today to learn more.
Latisys arrives on Gartner's
2014 Magic Quadrant for
Cloud-Enabled Managed Hosting!