HIPAA sFTP Hosting
HIPAA Vault’s HIPAA Compliant sFTP Server is built with security in mind, and is ideal for automated processes that include the transfer of protected health information (PHI). HIPAA Security Standard §164.306 requires covered entities and their business associates to ensure the integrity, confidentiality, and availability of electronic protected health information (ePHI), both at rest and in transmission. Specifically, these HIPAA protections require data servers to be effectively configured and maintained to:
- Preserve Data Integrity – Anticipate any hazards/threats to ePHI, and take all necessary steps
to protect it from data loss or corruption.
- Preserve Data Confidentiality – Anticipate the potential for unauthorized access and disclosures, and protect against them.
- Preserve Data Availability – Ensure that data continues to be accessible for required levels of performance, and implement necessary security policies and procedures (including redundancy, network protection, and optimization) to maintain availability.
In addition to providing a secure connection for the data stream, HIPAA Vault’s Secure FTP Server provides a host of resources for protecting sensitive data and maintaining HIPAA compliance. Several layers of protection are utilized, including Anti-Virus, Anti-Malware, Vulnerability Scanning, Host Intrusion Detection, Password Management, and Advanced Encryption. In addition, our sFTP server is highly scalable, allowing you to add or subtract storage as needed.
HIPAA Vault offers two options for allowing access to the sFTP server: 1) Two Factor Authentication (2FA), which adds an extra layer of sign-on security for users; or 2) Source IP Exclusion, in which scripting can be used to control which IP addresses are blocked from server access, and which are allowed.
HIPAA Vault’s fully managed services for HIPAA Compliant sFTP Server include our less-than-15 minute response times for critical alerts, and 90% first call resolution. Our dedicated IT professionals handle everything from general support questions and maintenance, to more complex issues. This results in reduced operating costs, while giving you the latest in security updates and compliance.
Click here to learn more about our managed services.