Guaranteeing Hosting Compliance

Guaranteeing hosting compliance.  It’s pretty much something that AIS Network has always done, and it’s a clear service benefit.  Our compliance with multiple security and regulatory standards such as HIPAA/HITECH, FISMA, FERPA, PCI DSS, GLBA, SOX and others repeatedly saves our clients time and money and helps them to avoid costly litigation over compliance errors.

Up until now, we’ve never really touted this service benefit.  Well, we should.  It’s incredibly important to our approach to compliant hosting. Further, it stands out as something that commodity hosting companies (think AWS and Google) and common generalist providers just won’t do.

Our newly designed website features an entire section devoted to our compliant approach and our “100% Compliance Guarantee.”  It’s just that important to us.

Guaranteed compliance is part of the fabric of all of AISN’s hosting solutions and services; it assures clients that AISN always passes its security and compliance audits so that AISN clients can also pass theirs.  It extends throughout the expanded array of custom cloud hosting solutions and services that we’ve introduced, including managed cloud, cloud migration, managed Microsoft Azure and compliance auditing services.

It’s important to understand that commodity hosting providers like AWS and Google, as well as many generalist hosting providers, treat your data like a commodity, and enterprise data is not a commodity.  It’s a strategic asset.  They’ll offer to host your most sensitive, mission-critical data and applications but won’t give you a 100 percent compliance guarantee on the hosted environment, simply because they cannot stand behind it.

For example, transparency into where data resides is a key component of regulatory compliance. Whether you’re a bank, a hospital or a state agency, it’s important to know where your data is for multiple security and compliance reasons.

As part of their due diligence, financial institutions outsourcing IT are required by the Federal Financial Institutions Examination Council to know where their information is physically being stored.  Similarly, if you cannot tell HIPAA/HITECH auditors where specific data are housed physically, you are non-compliant with HIPAA.  To prevent leaks of classified information, federal regulations require that contractors working for federal agencies be able to identify the physical location of their data, including the data center in which it is housed and the device on which it resides.  The majority of hosting providers are not in a position to do this.

With commodity and generalist hosting providers, you just never know where your data is.  It may be in Taiwan or Tokyo or the Sao Paulo state or somewhere else entirely.  Unlike those providers, AISN can tell you exactly where your data is.  With complete transparency, we can show you your logs and document all security procedures performed on your solution’s architecture.  On-demand, you’ll be able to see what we did yesterday to protect your data.  That’s part of our guaranteed 100 percent compliance.  It’s who we are and what we do.  That compliance guarantee comes standard with the company’s hosting solutions and services and applies to clients requiring compliance with HIPAA/HITECH, PCI DSS, FISMA, FERPA, SOX, GLBA, and other regulatory standards.

Smart IT pros who don’t want to worry about passing their next compliance audit know that they can move their most sensitive data to AISN and have complete peace of mind.  They know we’re the certified experts, and we have their back.  That’s why most of our clients hail from the security-focused health care, pharmaceutical, government, education and financial services industries.

Will you be next?  Let us know how we can help you pass your next compliance audit.


The author, Jay Atkinson, is CEO of AIS Network.