Security a top priority

MediCloud 360 utilizes Amazon EC2 Services for reliability, scalability, and HIPAA & HITECH compliance systems. With today's ever increasing digital data requirements, we know security is the most critical thing to consider when sharing data.

We have researched all of the security measures required to safely secure critical data and have selected Amazon's web services to meet the government's requirements of HIE "Health Information Exchange" Platforms.

More information about this system can be obtained here

 

Reports, Certifications,
and Independent Attestations.

AWS has in the past successfully completed multiple SAS70 Type II audits, and now publishes a Service Organization Controls 1 (SOC 1) report, published under both the SSAE 16 and the ISAE 3402 professional standards. In addition, AWS has achieved ISO 27001 certification, and has been successfully validated as a Level 1 service provider under the Payment Card Industry (PCI) Data Security Standard (DSS).

In the realm of public sector certifications, AWS has received authorization from the U.S. General Services Administration to operate at the FISMA Moderate level, and is also the platform for applications with Authorities to Operate (ATOs) under the Defense Information Assurance Certification and Accreditation Program (DIACAP). AWS will continue to obtain the appropriate security certifications and conduct audits to demonstrate the security of our infrastructure and services.

 

Physical Security

Amazon has many years of experience in designing, constructing, and operating large-scale data centers. AWS infrastructure is housed in Amazon-controlled data centers throughout the world. Only those within Amazon who have a legitimate business need to have such information know the actual location of these data centers, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access.

 

Secure Services

Each of the services within the AWS cloud is architected to be secure and contains a number of capabilities that restrict unauthorized access or usage without sacrificing the flexibility that customers demand.

 

Data Privacy

AWS enables users to encrypt their personal or business data within the AWS cloud and publishes backup and redundancy procedures for services so that customers can gain greater understanding of how their data flows throughout AWS.

 

Information on this page was derived from AWS Security and Compliance Center

Features