 |
|
||||||||||||||||||||
|
|
|
 |
|
|
|
||||||||||||||||
 |
 |
|
|||||||||||||||||||
 |
|
||||||||||||||||||||
|
|
 |
|
|
||||||||||||||||||
|
|
|||||||||||||||||||||
|
|
|||||||||||||||||||||
|
|
|||||||||||||||||||||
What word do CEO’s fear the most? Compliance. In today’s regulatory environment, the costs of compliance can be enormous. Symagio’s low-cost solution is simple and can alleviate those headaches in no time. Read below for how Symagio has helped companies deal with both HIPAA and SOX.
|
|||||||||||||||||||||
Compliance Standard |
Symagio's Solution |
Contingency Plan 164.308(a)(7)(i)Standard: Contingency plan. Establish (and implement as needed) policies and procedures for responding to an emergency or other occurrence (for example, fire, vandalism, system failure, and natural disaster) that damages systems that contain electronic protected health information. 164.308(a)(7)(ii)Implementation specifications: (A) Data backup plan (Required). Establish and implement procedures to create and maintain retrievable exact copies of electronic protected health information. (B) Disaster recovery plan (Required). Establish (and implement as needed) procedures to restore any loss of data.
|
We are able to provide comprehensive, off-site backup and data retention of internal and remote servers. One of the largest areas of noncompliance in entities covered by HIPAA is their lack of a data recovery plan in the event of a disaster. In a crisis situation, your information is quickly recoverable. We help protect you from fire, theft, natural disaster, and acts of terrorism by protecting your data in our world-class data center. |
Access Controls 164.312(a)(1)Standard: Access control. Implement technical policies and procedures for electronic information systems that maintain electronic protected health information to allow access only to those persons or software programs that have been granted access rights as specified in Sec. 164.308(a)(4). |
Our powerful software completely restricts access to your data to those who posses your specific authorized user name and key-generated password. Your data is transmitted and stored in an encrypted state, so that only YOU have access to it. The encryption is so powerful even we can’t access it. |
164.312(b)Standard: Audit controls. Implement hardware, software, and/or procedural mechanisms that record and examine activity in information systems that contain or use electronic protected health information. |
We automatically create a comprehensive audit trail of all backups and restores. You will always know exactly when you accessed your data. |
164.312(c)(1)Standard: Integrity. Implement policies and procedures to protect electronic protected health information from improper alteration or destruction.
|
We completely restrict user access – only YOU have the key that unlocks your data. Nothing could be more secure. |
Sarbanes-Oxley
Section 103(a)(2)(A)(i) Prepare and maintain, for a period of not less than 7 years, audit work papers and other information related to any audit report, in sufficient detail to support the conclusions reached in such report. |
Would you trust an old 8-track as the only copy of your favorite album? Of course not. Likewise, you shouldn’t trust your important records to a tape drive. We help you be sure that your records are in a safe, off-site facility. For long-term storage, you want our disk-to-disk solution |
Section 404(a)(1) State the responsibility of management for establishing and maintaining an adequate internal control structure and procedures for financial reporting; and mechanisms to corroborate that electronic protected health information has not been altered or destroyed in an unauthorized manner. |
Your data is encrypted using the global standard AES from the second it leaves your computer: your data’s integrity is our top priority every step of the process |
Section 802(a) Whoever knowingly alters, destroys, mutilates, conceals, covers up, falsifies, or makes a false entry in any record, document, or tangible object with the intent to impede, obstruct, or influence the investigation or proper administration of any matter within the jurisdiction of any department or agency of the United States or any case filed under title 11, or in relation to or contemplation of any such matter or case, shall be fined under this title, imprisoned not more than 20 years, or both. |
It’s a common story. In the old days they used paper shredders; now they use the delete key. Say a disgruntled employee wreaks havoc on your files—imperceptibly altering the sensitive ones and deleting the most important. Our solution is simple. We keep in our vault different versions of your data. If you want to restore the versions of your data from the day before your employee went off the deep end, no problem. That’s how powerful our software is. |
