Compliance Starts with Your Data Center Partner.
OnRamp Specializes in Hosting Sensitive Data
Stringent Controls and Audits for Security, Availability and Operating Integrity.
OnRamp specializes in working with customers to meet the most rigorous compliance requirements. We have stringent controls in place that comply with industry-recognized standards for the security and protection of sensitive, critical data. OnRamp participates in regular third party audits that include controls over information technology and related processes, policies, procedures and operational activities. These compliancies and certifications demonstrate that OnRamp is performing at optimal standards regarding security, availability and operating integrity.
SSAE 16 SOC 2
A Rigorous Audit Standard for Information Technology, Processes and Policies.
OnRamp operates under AICPA SOC 2 (SSAE16 SOC 2) standards and undergoes continuous third party audits for compliance. The Statement on Standards for Attestation Engagements no. 16 (SSAE 16) is the new “attest” standard put forth by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants. Formerly known as “SAS 70,” an SSAE 16 audit includes controls over information technology and related processes, policies and procedures, including operational activities, and validates everything is performing at optimal standards regarding security, availability and operating integrity. As an SSAE 16 SOC 2 certified company, OnRamp has been audited by a third party on our control activities related to:
- Logical and Physical Access
- Security of Environment and Information
- Secure Storage
The Most Secure HIPAA Compliant Hosting Solutions.
As HIPAA implementation experts, OnRamp partners with businesses to ensure HIPAA compliance. We have created systems, tools and procedures that help our customers tightly integrate our products and services with their own assets and procedures in a HIPAA compliant fashion. Our goal is to eliminate the seams and gaps in protection that might otherwise occur.
As your trusted partner in the HIPAA implementation process, OnRamp will work with you to design, implement and secure your systems and applications. OnRamp can act as your subject matter expert on what HIPAA requires, letting you remain focused on the day-to-day responsibilities of your core business.
High Security for Sensitive Data.
OnRamp assists customers that transmit cardholder information with PCI compliance requirements. Using our experience building and deploying complex IT infrastructure for hundreds of companies, OnRamp works with customers to create PCI compliant solutions to accomplish all 12 of the PCI-DSS 3.0 requirements.
OnRamp Self-Certifies with Safe Harbor Framework.
The United States of America (U.S.)-European Union (EU) Safe Harbor Framework was created by the Department of Commerce in coordination with the European Commission to bridge the gap between data privacy regulations issued in the U.S. with the more stringent EU standards. Organizations seeking Safe Harbor must annually self-certify that they agree to adhere to the Safe Harbor requirements which the Federal Trade Commission enforces.
The Safe Harbor self-certification for OnRamp Access, LLC has been finalized and is effective as of 6/4/14. As part of the company’s self-certification, OnRamp has developed its own self-regulatory privacy program that adheres to the seven privacy principles: Notice, Choice, Onward Transfer (Transfers to Third Parties), Access, Security, Data Integrity, and Enforcement, and the 15 FAQs that make up the framework.