Compliance

Being compliant not only protects you and your customers. It protects your business and ensures that you have met certain federal regulations that are required depending on the type of information that is on your servers.

We understand how vital compliance is to the success of your business, so we engineered security into the foundation of our offerings. It ensures you peace of mind with your company, your customers and your auditors.

Many customers leverage our compliance to open the door to larger enterprise opportunities that would not be available to them without Addova’s security as the foundation of their platform. Addova is your partner to ensure all of your security and compliance questions are answered correctly.

The Health Insurance Portability and Accountability Act, HIPAA, required the Secretary of the U.S. Department of Health and Human Services (HHS) to develop regulations protecting the privacy and security of certain health information.

Any company that deals with patient data, or covered entity, and engages an outsourced company, or business associate, to help carry out its health care activities must comply with HIPAA rules and regulations.

With Addova, your HIPAA Compliance is much more than just complying.

That is because we can free you from the frustrating and often complex process of having a HIPAA compliant website and environment by offering you a robust and custom engineered solution, one that protects your environment and ensures that your business runs smoothly.

Not only will we deliver you a HIPAA compliant hosting platform, we will sign a BAA (Business Associates Agreement) to stand behind the solution.

Addova for PCI compliance

PCI Compliance is more than a list of check boxes; it is an investment in your customers’ trust. That’s why Addova is committed to delivering beyond compliance, taking most of the burden off your company’s shoulders and helping you focus on your mission.

A PCI data breach can be devastating but not only to your customers.  Fines, brand damage and the impact to your mission are all additional side effects.  That is why our PCI Compliant Cloud Hosting was developed specifically to keep your data secure.   PCI Compliant systems compliant with all PCI DSS standards and are verified through rigorous Trustwave audits.

Our 6-Tier security safeguards beyond PCI requirements, because, as your partner, we want to do more than checkboxes.

We are here to help you:

 

  • Save Money –  Leverage Addova’s infrastructure.  We will provide all of the tools, systems 24/7 security operations team.  Just bring the code, we’ll do the rest.
  • Achieve Compliance Quickly – We’ll help you reach PCI compliance faster.  Your dedicated implementation engineer in concert with our security team will help answer all of your PCI DSS questions, assist in the completion of compliance documentation and respond to audit requests.
  • Avoid Fines – We will work tirelessly to protect your data, going beyond compliance to ensure your data is safe.  When implemented properly, the cost of compliance is much lower than the cost of non-compliance.
  • Stay Up-To-Date – We are constantly reviewing standards, attack vectors, and audit standards and updating our platforms to stay ahead of changes so you don’t have you.
  • Pass Audits Faster – Our security team is by your side you through the entire audit process. They know how to work most efficiently with auditors to help pass your audits quickly.

We understand the importance of ensuring the utmost transparency in internal controls and procedures. We want our customers to know they can trust Edge to provide managed hosting services that meet the strictest control standards and industry best practices.

Our operations have been independently audited and certified as an SSAE 16 hosting provider. By achieving SSAE 16 Type II, SOC 2 compliance, Addova has demonstrated that effective control objectives, and control activities are in place throughout the organization.

It is useful to compare SAS 70 vs. SSAE 16. The Statement on Auditing Standards No. 70 (SAS70) was designed in 1992 specifically for data centers. Because IT has changed drastically, an updated standard was needed. In 2010, SSAE 16 effectively replaced SAS 70 and has become the new standard for compliance reporting on controls at service organizations.

SSAE 16 compliance at Addova is comprehensive. While most other organizations limit the scope of their SSAE 16 compliance to just their data centers, Addova opts for a stricter audit that demonstrates end-to-end compliance in all of our processes, procedures and interactions throughout the organization.

Don’t settle for an SSAE 16 Type I certified data center.  Demand more with an SSAE 16 Type II certified hosting provider that includes not only the data center but also security, availability, processing integrity, confidentiality, and privacy.

Addova is audited every year to maintain our SSAE16 Type II SOC 2 compliant certification, which eliminates the time, cost and worries for our clients.

SSAE 16 compliance comes with a full range of services and personal support, plus a team of engineers who are available 24/7, 365 for consultations and assistance. We also monitor your hardware, software, databases and security around the clock, and provide you with full protection from our security platform.