OneNeck IT Solutions Completes HIPAA And HITECH Examination
Infrastructure as a Service for ReliaCloud and colocation services included in examination.
OneNeck® IT Solutions has announced the completion of an independent examination of its HIPAA and HITECH compliance attestations. As part of the examination, OneNeck had essential elements of the Health Insurance Portability and Accountability Act Security Rule of 2003 (HIPAA) and the Health Insurance Technology for Economic and Clinical Health Act (HITECH) reviewed.
Included in the examination were OneNeck’s physical and administrative security controls. Specifically, the examination evaluated OneNeck’s colocation services at their top-tier data centers in Arizona, Colorado, Iowa (Des Moines), Minnesota, Oregon, and Wisconsin. In addition, as part of the examination, OneNeck also had their Infrastructure as a Service for ReliaCloud® reviewed.
The findings confirmed that OneNeck has implemented and maintains the following:
- Administrative safeguards
- Physical safeguards
- Technical safeguards
- Breach notification
“Attaining HIPAA and HITECH attestations is in line with our commitment to our customers,” said Clint Harder, CTO and senior vice president, OneNeck. “For our healthcare clients, it reassures them we have the tools in place to protect and secure their patient data, which allows them to focus on security and administrative controls at the application and data layer.”
The examination was performed by Shellman & Company, Inc., an independent CPA firm with extensive IT service provider experience. Following completion of the examination, Shellman & Company issued an opinion confirming the description of OneNeck’s information security program was fairly presented and that OneNeck has adopted the essential elements of the HIPAA Security Rule and HITECH requirements.
Completion of the HIPAA and HITECH examination follows recent announcements, by OneNeck, that they have also completed the Type 2 SSAE 16 (SOC 1) and (SOC 2) examination and PCI Data Security Standard validation.