Call Toll Free: 800.638.6336

Standard Colocation > Compliant Colocation

As a data center infrastructure provider, privacy, information security, controls, and best practices take an important role in our organization. Our focus on compliance helps our customers ensure that they meet the complex and ever-changing regulatory demands of various industry and governing agencies. Our data center infrastructure is compliance-ready and is tested and verified annually by an independent 3rd party auditor to ensure that the appropriate physical controls and information security policies are in place to protect all customer data. This guarantees that all of our customers’ data is handled securely and removes the need for them to engage in expensive third party audits.

Net Access has been verified to meet the compliance and reporting standards of the following:

 

SSAE 16
Established by the AICPA, the Statements on Standards for Attestation Engagements (SSAE 16) is a set of guidelines for reporting on the level of controls present at a service organization. SSAE 16 sets standards in the areas of physical security, environmental security, cloud, network services and monitoring, logical security, infrastructure change management, provisioning and support.   Service Organization Controls (SOC) are a series of standardized audits with common criteria for data center security, availability, processing integrity, confidentiality, and privacy. SOC 1 reports focus solely on service organization controls that are likely to be relevant to an audit of a user entity’s financial statements. This report is an important component of controls over financial reporting for purposes of compliance with laws and regulations such as the Sarbanes-Oxley Act.

 

Click to view image in detail
Payment Card Industry (PCI) Data Security Standard (DSS) is a comprehensive set of standards that require merchants and service providers that store, process, or transmit customer payment card data to adhere to strict information security controls and processes. PCI DSS requires adherence to strict information security controls and processes for security management, network architecture, users’ access management, monitoring, software development and policies and procedures.   HIPAA (Health Insurance Portability and Accountability Act) and HITECH (Health Information Technology for Economic and Clinical Health Act) set standards to protect the privacy of electronic medical records such as patient health information, including specific guidelines that healthcare entities must follow to secure such information when it is being processed, transmitted or stored in a data network. HIPAA focuses on administrative, technical and physical security rule safeguards, while HITECH concentrates on breach notification safeguards.

 

In addition, Net Access also self-certifies compliance with the US – EU Safe Harbor Framework related to privacy protection.

 US EU Safe Harbor This framework was established to bridge the differences in approach to privacy protection by the United States and European Union and provide a streamlined means for U.S. organizations to meet all of the privacy policies established by the EU commission.

 

Current Net Access customers with related services can find updated copies of all of our attestation documents in the ‘Resources’ section of the Customer Care portal.

 

 

 

 

Disaster Recovery Services >

Resources

Learn more about us and what makes us a great partner for your business

  • © 2014 Net Access - All Rights Reserved.