Security Framework Overview

Compliance

Security and Compliance Overview

RegulationsToday’s environment brings increasing regulation to our customers. While this may be viewed as tedious, we hope to deliver value as we provide compliant solutions.

Global Data Vault enables compliance with a variety of standards and regulations including those listed below. Our compliance is accomplished through physical controls, logical controls, and to a large degree through policy controls.

As you evaluate working with Global Data Vault, we’ll share more details about the actual controls in place. We can also review our controls compared to your needs outside the regulations and standards listed here.

 

Acronym Name Promulgated Authority Applies to
HIPAA Health Insurance Portability and Accountability Act US Federal Law Regulation Companies that keep any patient health information
PCI Payment Card Industry Companies that issue credit cards Standard Companies that store credit card numbers
NIST National Institute of Standards and Technology US Federal Government Standard US Federal Government entities and their vendors
DFARS Defense Federal Acquisition Regulation Supplement US DoD Regulation Companies serving the US DoD
GDPR General Data Protection Regulation European Union Regulation Companies that store data about any EU citizen
SOX Sarbanes-Oxley US Federal Law Regulation US companies with publicly traded securities
SSAE 16 SOC 1 / SOC 2 Statement on Standards for Attestation Engagements / Service Organization Controls American Institute of Certified Public Accountants (AICPA) Standard Data center operational controls

Ransomware: What You Need to Know Now

The internet is an amazing, useful and often wonderful thing. It’s also a giant mess. For every resource it gives your business that helps you succeed, it also offers a threat. Not-safe-for-work embarrassments aside, there are some genuine dangers on the internet that...

2018 Was Our Best Year Yet!

The new year is upon us, and 2018 is now firmly in the rearview mirror. It only seems right to take a moment and reflect on everything we did and accomplished over the last 12 months. This past year proved to be a big one for Global Data Vault. We’ve seen a lot of...

The 3-2-1-1 air gap rule

The importance of Air Gap Backups in a Disaster Recovery Solution It’s not a matter of IF your business will succumb to hackers, a natural disaster, employee theft or other mismanagement of data. It’s a matter of WHEN. Naturally, it’s become common practice to keep...