AUSTIN, TX – OnRamp, a leading high security hosting provider specializing in HIPAA Compliant Hosting services, and Ostendio, Inc., a Virginia based compliance management company, announced a partnership to assist businesses interacting with electronically protected health information (ePHI) in managing the administrative, technical and physical safeguards required by HIPAA and HITECH for the security of this critical data. This news comes just months after the United States Health and Human Services Office of Civil Rights (OCR) issued a new set of HIPAA-related audit protocols, which focus on evaluating the ability of both covered entities and business associates to uphold the HIPAA and HITECH privacy, security, and breach notification rules. By offering to incorporate Ostendio’s MyVirtualComplianceManager™ (MyVCM™) into OnRamp’s HIPAA Hosting customers’ IT environments, the combined solution provides a more comprehensive means of meeting HIPAA requirements and avoid costly penalties for non-compliance.
“With more and more businesses outsourcing their IT infrastructure in an increasingly complex regulatory environment, ensuring critical data is not only protected physically but is backed by the proper policies and procedures, documenting the protection of this data is becoming key for compliance,” stated OnRamp Founder and HIPAA compliance expert, Chad Kissinger. “With increased legal and financial penalties set forth by the Omnibus Rule, it is important that both covered entities and their business associates look outside the four walls of their data center provider to maintain a culture of compliance within their company. This means doing such things as designating an internal security official, developing role-based access controls and conducting workforce training and management, among other guidelines detailed in the HIPAA Security Rule. In working with businesses like Ostendio and OnRamp, companies that require a HIPAA compliant hosting solution can manage this process and fulfill a number of the early requirements of HIPAA and HITECH.”
MyVCM™, a SasS based compliance management solution, allows businesses to create, store and manage internal compliance polices online. The platform ensures all policies are kept current and enables its customers to make sure that all employees have acknowledged and demonstrated an understanding of their respective compliance-related obligations. It also helps the company track where regulated data is stored within their IT environment and whether the data is being accessed appropriately. “OnRamp has developed a market leading position helping businesses store their data in a compliant manner,” says Grant Elliott, CEO of Ostendio. “Offering MyVCM™ on top of their core offering demonstrates how well they understand the need to take a holistic approach to fully achieve regulatory compliance.”
When paired with OnRamp’s 3-Step HIPAA Risk Management Process, a tool that walks colocation, managed hosting, private cloud and disaster recovery customers through a process to diagnose, assess and manage any threats, vulnerabilities and risks to their IT infrastructure hosted at OnRamp, the two solutions create a foundation for compliance that accounts not only for physical & technical requirements of HIPAA but the administrative requirements as well.
Ostendio delivers affordable compliance solutions to small and medium businesses. Ostendio’s MyVirtualComplianceManager™ (MyVCM™) is a cloud based compliance management platform that delivers an easy to use, cost-effective way for companies to improve their Information Security posture.
MyVCM™ allows businesses to: assess risk; create and manage critical policies and procedures; educate and assess employees on their security awareness; and monitor continuous compliance against industry regulations.