Connectria, a global provider of managed cloud hosting services, has achieved HITRUST Common Security Framework (CSF) Certification for its dedicated, customer hosting environments. HITRUST CSF Certification demonstrates Connectria‘s commitment to maintaining the security and privacy of protected health information (PHI) and other sensitive data.
HITRUST CSF Certification adds to the impressive list of independent audits and validations already achieved by Connectria including HIPAA/HITECH, SSAE 18 SOC 1 and SOC 2, PCI DSS, GDPR, CCPA, ISO 27000, FISMA, FERPA and more.
While focused on the healthcare sector, HITRUST harmonizes existing, globally recognized standards including ISO 27000, GDPR, NIST, and PCI-DSS into a common framework that can be leveraged across many industries and security/compliance requirements. HITRUST doesn’t replace these standards, but HITRUST CSF certification would be a “powerful” tool for organizations that need to demonstrate security and privacy compliance to federal and industry regulators.
“This is by far the most comprehensive compliance audit we’ve achieved,” said Christine Pitti, Head of Compliance Services, Connectria. “Our data centers have been independently audited for HIPPA/HITECH compliance for many years as well as many other industry standards. HITRUST CSF gives our customers an added level of assurance that we’re following the most stringent standards to keep their data secure, with full documentation as proof.”
In addition to working directly with healthcare organizations, Connectria also partners with healthcare independent software vendors (ISVs), like ComplyAssistant, to deploy their offerings in a Software as a Service (SaaS) model.
“Our customers store PHI data in our systems, so compliance is very important to our business,” said James Schroeder, co-founder of ComplyAssistant. “We’ve trusted Connectria to manage our customers’ cloud environments for more than a decade. HITRUST certification gives us an added assurance that we can pass on to customers wanting to use our SaaS certification application.”