OneNeck® IT Solutions has announced the independent examination of their HIPAA and HITECH compliance attestations is now complete. The examination for compliance with the Health Insurance Portability and Accountability Act Security Rule of 2003 (HIPAA) and the Health Insurance Technology for Economic and Clinical Health Act (HITECH) included scrutiny of OneNeck’s physical and administrative security controls.
Specifically, the HIPAA and HITECH examination evaluated the colocation services OneNeck offers at their top-tier data centers in Arizona, Colorado, Iowa (Des Moines), Minnesota, Oregon, and Wisconsin. The examination also includes review of ReliaCloud®, OneNeck’s Infrastructure as a Service.
The examination was performed by Schellman & Company, Inc., an independent CPA firm with extensive IT service provider experience. As a result of the reviews, Schellman & Company opined that OneNeck has adopted the essential elements of the HIPAA Security Rule and HITECH requirements as well as implemented and maintains the following:
- Administrative safeguards
- Physical safeguards
- Technical safeguards
- Breach notification
“For our health care clients, attaining HIPAA and HITECH attestations offers reassurance that we have the tools in place to protect and secure their patient data,” said Dave Flynn, SVP of Operations and Engineering at OneNeck. “At the same time, it allows our clients to center their focus on the security and administrative controls at the application and data layer.”
Completion of the HIPAA and HITECH examination follows recent OneNeck announcements noting completion of the EU–U.S. Privacy Shield Framework and SSAE 18 examination.