Druva inSync Cloud Meets HIPAA Requirements
For public cloud security
This is a Press Release edited by StorageNewsletter.com on March 28, 2014 at 2:54 pmDruva, Inc. announced that its public cloud deployment option for its inSync, an endpoint data protection and governance platform, has passed a review validating the company’s security and privacy controls for handling HIPAA-compliant protected health information (PHI).
The review by global consulting firm KPMG International coincides with a steady increase in adoption of inSync cloud by customers in industries like healthcare to backup, remotely access, track, and share personal and electronic health information stored on any mix of laptops, desktops, tablets and smartphones.
The KPMG review was conducted in response to HITECH legislation extending HIPAA rules to third-party service providers. inSync Cloud, designed for organizations that want endpoint data backed up and maintained outside their firewall, also has received ISAE 3000 Type II certification for cloud operations; has achieved TRUSTe EU Safe Harbor certification facilitating compliance with the European Union’s Data Protection Directive; and provides all of the infrastructure security assurances associated with being hosted by Amazon Web Services, Inc.
Apria Healthcare, University of Texas Southwestern Medical Center, Pfizer, Zoetis, Shire Pharmaceuticals, and Steris/US Endoscopy are among the Druva customers with stringent compliance requirements who have opted for inSync public cloud deployments. inSync can also be deployed behind the corporate firewall in on-premise, multi-node private cloud or object storage-integrated private cloud scenarios.
“One might assume that, because healthcare is such a highly regulated industry, the adoption of the social, mobile, analytics, and cloud (SMAC) technologies would be less of a priority for CIOs and technology management overall. That assumption would be wrong,” according to a new report from Forrester Research, Inc. “These disruptive technologies have huge potential to improve healthcare outcomes or at least reduce costs, and this means that security and risk pros need to be at the forefront of enabling adoption while reducing risks.” (Industry Spotlight: US Healthcare Security Budgets, Priorities, And Challenges, Forrester Research., February 19, 2014)
“We have been seeing a steady rise in public cloud deployments of our inSync platform, and KPMG’s validation of our cloud privacy and security should add an increasing comfort level for customers who need to comply with stringent regulations like those imposed by mandates like HIPAA as well as agencies like the FDA,” said Jaspreet Singh, Druva founder and CEO. “With 99.95% availability, full data redundancy, two-factor encryption key management and a full range of other protections, our inSync cloud delivers all the benefits of a public cloud architecture along with the security needed to fulfill regulatory requirements.“
The inSync platform provides ability to integrate automated endpoint backup, IT-managed file sharing, encryption and other data loss prevention functions, and governance capabilities for compliance and e-discovery, eliminating point solutions that would add significant IT and user overhead. It also creates a master record of all endpoint data that enables end users to access any file remotely, plus easy content recovery in the event of device loss or theft.