Storage Guardian

Storage Guardian's technology and services are HIPAA compliant

As of April 2005, HIPAA's security standards mandate that all health care providers establish a contingency plan to respond to any type of computer disaster involving potential data loss. Storage Guardian's technology complies with the following HIPAA requirements:

• User authentication
• Role based access
• Encryption of data (AES128, AES192, AES256 bit encryption)
• Offsite data storage outside of the organization
• Secure storage facilities
• Transmission Reports

Storage Guardian's Internet Vaulting solution is completely secure and can protect your organization in the case of any type of data loss. Please refer to the table below for a more detailed look into how Storage Guardian's secure remote backup solution enables business to instantly comply with HIPAA regulations:

Storage Guardian's technology and services are SSAE 16 Type II compliant in accordance with the AICPA (SOC) framework.

What is SSAE 16 Type II Compliance?

SSAE 16 is the professional standard used for issuing SOC 1 reports, which consists of SOC 1 (SSAE 16) along with SOC 2 and SOC 3 (AT 101) reporting. The SSAE 16 standard effectively replaces the aging and antiquated SAS 70 auditing standard that has been in use for approximately twenty years.

You can find out more about this new standard of compliance here.

What does Storage Guardian's certification mean for your company?

Storage Guardian’s SSAE Type II compliance means that we have undergone attest procedures in accordance with the AICPA professional standard. You can have complete confidence that your data resides within a facility which employs stringent internal business processes and IT controls for the services provided.

What is the certification for Cryptographic Module Validation Program FIPS 140-1 and FIPS 140-2 Modules In Process List?

Modules validated as conforming to FIPS 140-1 and FIPS 140-2 are accepted by the Federal Agencies of both the United States and Canada for the protection of sensitive information. The National Institute of Standards and Technology (NIST) established the Cryptographic Module Validation Program (CMVP) that validates cryptographic modules to Federal Information Processing Standards (FIPS)140-1 Security Requirements for Cryptographic Modules, and other FIPS cryptography based standards.

What does Storage Guardian's certification mean for your company?

It means we have passed rigorous security standards using independent, accredited Cryptographic and Security Testing (CST) laboratories to test our modules against requirements found in FIPS PUB 140-2, Security Requirements for Cryptographic Modules. These requirements cover 11 areas related to the design and implementation of a cryptographic module. NIST's Computer Security Division (CSD) and CSEC jointly serve as the Validation Authorities for the program, validating the test results and issuing certificates.

Storage Guardian is CICA 5970 Type B certified by SAS 70 International.

Storage Guardian’s Network Operations Centre and File Sync 'n Share services are protected by Comodo Instant SSL.

Recognized by 99.9% of all browsers and mobile devices, Comodo is a leading supplier of SSL certificates guaranteeing a high level of encryption for online transactions.

What is Comodo Instant SSL?

Instant SSL by Comodo provides the strongest levels of encryption available, featuring 2048-bit signatures with 256 bit encryption.

What does this mean for you?

This means that Storage Guardian and Comodo are hard at work protecting your data, and you may rest assured that your online transactions with us are securely encrypted.