Security and Compliance

You are here

Security and Compliance

Is Compliance Important To You?

 

UnitedLayer offers a range of compliance solutions for our customers. UnitedLayer is SSAE 16 Type II certified in all its data centers. This means that an independent accounting firm has audited that policies and procedures, as defined by the American Institute of Certified Public Accountants (AICPA), are followed by UnitedLayer in their day-to-day service operations.

 

Dependable Foundation For Various Compliance Regimes

 

As per the SSAE 16 organization, a SSAE 16 Type II certification “represents that a service organization has been through an in-depth audit of their control objectives and control activities, which often include controls over information technology and related processes. In today's global economy, service organizations or service providers must demonstrate that they have adequate controls and safeguards when they host or process data belonging to their customers".

Ask the UnitedLayer team to help you design an infrastructure that meets your particular compliance needs, whether it be for health-care (HIPAA), processing credit card/ecommerce which requires Payment Card Industry (PCI) compliance, Financial (SARB-OX), etc. UnitedLayer solution experts will tailor a turn-key system for you that meets your requirements and provide help with ongoing audit and reporting to ensure that your auditing and reporting guidelines are met.

 

PCI Compliance Ready

 

 

 

UnitedLayer is PCI Compliance Ready. PCI Compliance standards, as defined by the Payment Card Industry, requires certain security obligations for businesses that process credit cards as a method of payment for their goods and services.

UnitedLayer has enabled several customers to set up their solutions in a manner that comply with PCI standards. This means that UnitedLayer architects the solution that includes:

  1. Physical Security of the customer infrastructure
  2. Architecture of their compute infrastructure
  3. Securing any backup data
  4. Deploying secure, qualified OS’es and Applications
  5. Regular virus scans
  6. Ongoing monitoring of Ports for intrusion detection

This means that the PCI Compliance readiness extends across all our solution offerings including our all of our Hybrid Solutions, Colocation, Managed Dedicated Servers, Managed Firewalls and LoadBalancers, Managed Private Clouds, Managed Backup and other Availability Solutions.

 

 

UnitedLayer has several Health Care entities that offer Health care solutions. As per the Health and Human Services guidelines that for Covered Entities (i.e,. Health Care Service Providers) “The Security Rule specifies a series of administrative, physical, and technical safeguards for covered entities to use to assure the confidentiality, integrity, and availability of electronic protected health information.”

UnitedLayer assists such customers to deploy solutions that help them meet the HIPAA guidelines. From a data protection point of view, UnitedLayer has uncompromising, strict policies and procedures for physical access to customer physical equipment In addition, UnitedLayer Managed Services can help setup their IT infrastructure to exacting standards as required by regulatory requirements.

This includes:

  1. Deploying and Managing Firewalls
  2. Running regular port scans to detect any unsafe ports
  3. Ongoing intrusion detection
  4. Setting up HIPAA compliant Storage Solutions – block, object storage and archival

This means that UnitedLayer will work with customers to set up HIPAA compliant solutions across all our service offerings - Colocation, Managed Dedicated Servers, Managed Firewalls and LoadBalancers, Managed Private Clouds, Managed Backup and other Availability Solutions as well as our Hybrid Solutions.

 

 

HIPAA Compliant

 

 

 


Sarbanes Oxley

 

The 'Public Company Accounting Reform and Investor Protection Act' (in the Senate) and 'Corporate and Auditing Accountability and Responsibility Act' (in the House) and commonly called Sarbanes–Oxley, Sarbox or SOX, has several guidelines that are required with respect to company information and assets. One of the requirement stated in the act requires companies to: “prepare, and maintain for a period of not less than 7 years, audit work papers, and other information related to any audit report, in sufficient detail to support the conclusions reached in such report.”

This means that the IT infrastructure needs to be designed from the top down to meet these strict requirements. UnitedLayer is fully capable of helping our customers deploy a solution that encompasses the lifecycle of the information and manage it as required by SOX. Specifically, our Storage, Backup and Availability Solutions, ensure that the information is protected and archived for the stipulated amount of time.

 

About

Headquartered in San Francisco, California - one of the most networked Internet points of presence in the world - UnitedLayer provides its customers with Hybrid Cloud Hosting Expertise, offering colocation, managed services, public and private clouds and business continuity solutions.

GET IN TOUCH

DATA CENTERS

  • San Francisco Data Center
       200 Paul Ave Suite 110 (HQ)
       San Francisco, CA 94124
  • Los Angeles Data Center
       530 West 6th Street
       Los Angeles, CA 90014
  • Las Vegas Data Center
       7135 S. Decatur Blvd
       Las Vegas, NV, 89118

  • Ashburn Data Center
       21715 Filigree Court
       Ashburn, VA, 20147
  • Toronto Data Center
       27 Buttermill Avenue
       Vaughan, ON Canada,
       L4K 3X1
  • Vancouver Data Center
       555 West Hastings Street
       Vancouver, BC, Canada,
       V6B 4N6