Tag: compliance

The European General Data Protection Regulation (GDPR) will be enforced starting May 25th, 2018. That’s only 10 weeks away! Are you still scrambling to become compliant? You’re not alone. According to a survey by Solix Technologies, 22 percent of companies were still unaware they had to comply with GDPR as recently as December. The general consensus is that half of all US companies that should be compliant with GDPR by May 25 will not be. Do you need to meet …

Is Azure Stack right for me?

Posted on February 26, 2018 by

Microsoft’s highly touted hybrid cloud offering, Azure Stack, is now available for ordering, but does that mean you should run right out and get it? Before deciding that, we’ll quickly review what Azure Stack is as well as use cases that might benefit from it and challenges around deploying it. Up until now, Azure was known solely as a public cloud provider. With Azure Stack organizations get the same functionality, performance and security of Azure public cloud, but with the …

GDPR vs EU-US Privacy Shield

Posted on October 24, 2017 by

The deadline for enforcing GDPR, or General Data Protection Regulation, is only a few months away, and businesses across the US are asking themselves what they need to do to prepare, if anything. What does the new regulation mean for the EU-US Privacy Shield agreement from last year? How does the newest agreement affect companies in the US? We’ll answer a few questions about GDPR and EU US Privacy Shield. What is GDPR? It’s a new framework for data protection …

According to a recent Gartner report, nearly half of large enterprises will deploy hybrid cloud environments by the end of this year. That level of growth is super exciting for the cloud, as more organizations take advantage of a digital-based strategy. However, despite the maturity of the cloud, many CIOs still express concerns. There are two major challenges organizations face in a hybrid cloud environment (or any environment, really.) One is security, which we’ve covered. The other? Compliance. We talked about …

One of the biggest concerns around hybrid cloud for organizations is data security. According to Gartner, 38 percent of companies who don’t plan to use public cloud cited security and privacy as the main reasons. It’s very logical (and necessary) to ask how the cloud will protect your most valuable asset – your data. What are the biggest security challenges in hybrid cloud adoption? According to experts, the biggest security concerns in a hybrid environment are compliance, lack of encryption, poor …

You’ve decided to outsource your IT needs to a third-party provider. But who should you trust with your critical infrastructure and data? This article will give you some tips on what to look for in a secure hosting partner and provide you with a checklist of what you should expect to find when you take a tour of a potential data center. The data center provider you choose is more than just a building. You’ll be keeping the most valuable …

There are many aspects of complying with HIPAA regulations, and all are equally important to avoid facing the stiff penalties that come as a result of any violations. In addition to technical and physical safeguards for your PHI, the administrative safeguards of the HIPAA Security Rule require a contingency plan. This is comprised of a data backup plan, disaster recovery plan, emergency mode operation plan, testing and revision procedures as well as application and data criticality analysis. We’ll discuss how …

5 tools to protect patient data

Posted on October 3, 2014 by

As HIPAA regulations increase and cybersecurity threats advance, the healthcare industry’s effort to protect patient data gets more complex. Online Tech recently contributed to a story posted on BlogHIPAA.com that covers five tools to help protect patient information and ease the compliance burden: Email encryption Mobile phone BYOD protection HIPAA-compliant storage HIPAA-compliant hosting Compliance tracking solution BlogHIPAA spoke with representatives from industry-leading organizations in each of these areas, each of them focused on compliance. They each provided insight into why …

It amazes me how plentiful and important data has become to our lives. In the early 1990s, I co-founded a company that built a software product called WARE that tracked and analyzed workplace injury and illness information. WARE included critical data analytics to help with loss control, automated reporting required by Department of Labor regulations, electronic claim submission to the insurance carrier and automating many of the critical decisions required to properly report and track a case. The automated OSHA …

Note: The following article is part of a shared content agreement between Online Tech and InfoSec Institute. This article, written by cyber-threat analyst Aaron Bossert,  illustrates perfectly the difference between check-box compliance and compliance as part of your culture. While many of the examples below relate to NIFT standards, they can easily correlate to PCI, HIPAA or other compliance frameworks. (View original post.) “What’s in a name? that which we call a rose. By any other name would smell as …

Get started now. Exceptional service awaits.

Live Chat