If you are a covered entity according to the HIPAA laws and you want to run a HIPAA compliant website or application, you will be needing HIPAA compliant hosting. Please be sure you have read this full in-depth article first: HIPAA Compliant Hosting Explained.
On this page you will find the complete list of HIPAA compliant hosting providers. There are more hosting providers of course, but not all of them are up capable of offering a HIPAA compliant hosting solution that stands the test.
The companies listed offer outsourced HIPAA hosting without the need to host anything on your own infrastructure. This type of arrangement makes them a business partner for which they need to sign a Business Associate Agreement (BAA). All of the providers in this list meet the HIPAA compliant web hosting requirements and are willing to sign a BAA.
I also want to point out an important section from the “HIPAA Cloud Storage Explained” article as it’s also applicable for HIPAA compliant hosting:
CEs (covered entities) should outsource to providers who advertise to be HIPAA compliant cloud storage providers and also those that are willing to provide signature to a HIPAA required Business Associate Agreement (BAA). Even then, the responsibility falls upon a CE to engage some method of risk analysis to ensure that a chosen cloud storage provider is compliant with all of the requirements of HIPAA.
Many hosting companies offer HIPAA compliant web hosting as well as HIPAA compliant email and HIPAA compliant cloud storage. Some providers just solely offer HIPAA compliant hosting, from small business to enterprise level. All or these providers are capable of running a professional HIPAA compliant website or app.
The Full List of HIPAA Compliant Hosting Providers
Recommended: VMRacks
VM Racks logoVM Racks is a Cloud Provider offering a full suite of HIPAA Compliant Solutions including hosting, email, sftp and more. They have a trademarked solution called True HIPAA Compliance™ which they use to guarantee their cloud hosting packages are 100% HIPAA compliant and they sign BAA’s for all customers. All of their HIPAA Compliant plans include “managed”, meaning VM Racks does all of your monitoring, hardening, scanning, patching, and server security.
Pricing for Managed HIPAA Compliant Hosting starts at only $199 and includes 24/7 support.
>> Read the HIPAA HQ review of the VM Racks HIPAA Compliant Hosting Solution
>> Learn more about HIPAA Compliant Hosting from VMRacks
>> Learn more about VM Racks HIPAA Compliant Hosting pricing
>> Learn more about the HIPAA Cloud Startup plan for $299 a month
ByteGrid
ByteGrid provides secure, HIPAA compliant hosting solutions for the Healthcare Industry. ByteGrid is committed to the highest level of quality in the management, security, integrity and availability of regulated data.
ByteGrid is a compliance focused organization offering the only EHNAC accredited (for HIPAA) and SOC 2 + HITRUST certified data centers in the United States. Both these designations demonstrates that it’s dedicated to meeting, understanding and abiding by compliance mandates faced by its clients.
ByteGrid has implemented a comprehensive Quality Management Systems (QMS) that includes multiple policies and procedures that satisfy the detailed requirements of the HIPAA-HITECH security rule. ByteGrid owns and operates all its data center facilities, is fully transparent and open to audit.
ByteGrid offers cloud, colocation, managed services, and compliance services. They also sign BAAs and performs risk assessments.
>> Learn more about HIPAA Compliant Hosting with ByteGrid
>> Learn more about HIPAA Compliance in the Cloud
>> Case study: Why Adventist HealthCare Utilized ByteGrid’s Compliant Colocation
OnRamp
OnRamp offers fully customizable solutions to help businesses achieve auditable HIPAA compliance. The company owns and operates its own SOC 2 certified facilities and employs best-in-class hardware and software to deliver colocation, managed hosting, private clouds, and hybrid hosting solutions.
OnRamp is a standout in their ability to facilitate an auditor’s risk assessment, including physical inspection of the individual components that make up the IT environment that houses electronic protected health information (ePHI).
OnRamp’s 3-Step HIPAA Risk Management Tool is used to easily diagnose, assess, and manage any vulnerabilities and risks involved in implementing customers’ IT infrastructure. In addition to aiding the development of a customized BAA (which OnRamp will sign), the documentation gathered while using the tool can act as a basis for a more in-depth risk analysis and guide efforts to collaboratively ensure compliance.
OnRamp’s NOCs are staffed 24/7/365 by a team of onsite technicians and engineers to provide hands-on support.
>> Read the HIPAA HQ review of the Onramp HIPAA Compliant Hosting Solution
>> Learn more about OnRamp HIPAA Compliant Hosting pricing
>> Learn more about HIPAA Compliant Hosting with OnRamp
>> Learn more about the OnRamp HIPAA Risk Management Tool
>> “Warning: HIPAA Audits Set to Increase in 2017“, Blog post by Chad Kissinger, founder of OnRamp
>> “What is a HIPAA Compliant Data Center & How to Find One“, Blog post by Chad Kissinger, founder of OnRamp
LuxSci
LuxSci has an interesting HIPAA compliant hosting solution for those looking for a low cost (but HIPAA compliant) hosting provider. They take all necessary precautions to ensure HIPAA compliance, as well as signing a BAA. The reason they can offer their low pricing is that that take a default server setup which you can make HIPAA compliant for a one-time fee.
Their server infrastructure is already well equipped for handling HIPAA related hosting tasks. The LuxSci server are hosted at RackSpace, an enterprise grade premium hosting specialist. You can read more about this on their infrastructure page. Although it may be possible to run a HIPAA compliant website on shared hosting, but it is generally not recommended due to added security risks which they perfectly explain in this article.
Dedicated server pricing starts at $100 per month, and you can add extra server power and redundancy in the order process. Dedicated server pricing starts at $100 per month.
>> Learn more about HIPAA Compliant Hosting with LuxSci
>> Learn more about LuxSci HIPAA Compliant Hosting for $100 per month
Armor (/Firehost)
Armor (previously known as Firehost) is one of the leaders in HIPAA compliant hosting, offering “Compliance as a Service”. Armor has invested heavily in their healthcare hosting solutions in the recent years. They offer HIPAA compliant server hosting along with several services to monitor and maintain HIPAA compliance.
If you want to know more about Armor, please read the interview we had with them. A typical Armor compliant hosting setup runs in the hundreds of dollars a month.
>> Read our Armor review
>> Learn more about the Armor HIPAA Compliant Services
SingleHop
SingleHop has a full suite of HIPAA compliant services. The combine both bare metal HIPAA compliant server hosting with a private cloud for full redundancy. SingleHop has advanced protection and monitoring mechanisms in place to ensure full HIPAA compliance. SingleHop doesn’t provide a default setup as each of their HIPAA compliant hosting solutions are custom-made per the client requirements.
As you can read in our SingleHop review an entry level hosting setup starts at around $1.500 per month. We have a special agreement with SingleHop in place to give you a 50% discount on your monthly bill (read the details). Even though SingleHop is in the high price range, they make sure your hosting solution is 100% HIPAA compliant.
>> Read our SingleHop review & learn more about our discount offer
>> Learn more about HIPAA Compliant Hosting with SingleHop
Liquid Web
Liquid Web’s HIPAA compliant hosting solution is in the lower price end, which makes them a great fit for a tighter budget. Their lower pricing doesn’t mean they comprise on quality or monitoring as they have a very advanced HIPAA hosting setup and can testify they are HIPAA compliant with a Business Associate Agreement (BAA). Liquid Web is one of the largest hosting companies in the world, allowing them to provide their services cost efficient. Please read our Liquid Web review to learn more about the company and their products.
Liquid Web allows you to configure your own HIPAA compliant hosting solution with prices starting at around $700 per month. Just click the discount link below or use this link.
Healthcare Blocks
Healthcare Blocks is a HIPAA-compliant application platform that powers healthcare technology systems of all sizes, from small startups to large medical groups. Built on top of Amazon Web Services, it has been audited by hospital and Fortune 100 organizations, and is supported by a seasoned DevOps team.
Their transparent pricing starts as low as $200 per month for an application server and database, with flexible options for virtual machine or container-based hosting environments. Modern micro-services based architectures are supported and encouraged.
The Healthcare Blocks platform is fully-managed, meaning most DevOps tasks are handled by the Healthcare Blocks team, freeing up customers to focus on their application and users, rather than system administration.
>> Learn more about HIPAA Compliant Hosting with Healthcare Blocks
Netgain
Netgain is a healthcare IT provider delivering HIPAA compliant private cloud hosting to medical practices nationwide. They offer customized cloud hosting solutions to meet each organizations’ unique needs. As your IT Advisor, Netgain starts with your business objectives and their Cloud Experts use the power of the cloud to boost productivity, regulate costs, enhance flexibility, and drive innovation.
>> Learn more about HIPAA Compliant Hosting with Netgain
>> Learn more about the Netgain Private Cloud Hosting solution
Online Tech
Online Tech offers enterprise HIPAA compliant hosting with full HIPAA compliance from data center to server. They provide HIPAA compliant cloud server, dedicated servers and even co-location. Their entire product range and all data center locations are independently audited against the guidelines of the Department of Health & Human Services HIPAA audit protocol and they were found to be 100% compliant. You can request the audit report on their website.
Each HIPAA hosting solution if tailor made so you’ll need to request a quote to discuss your specific hosting requirements.
>> Learn more about HIPAA Compliant Hosting with Online Tech
Datapipe
Datapipe is a specialized hosting provider focussing on providing compliant hosting solutions for HIPAA, PCI DSS and SOX. For their HIPAA hosting product they added all required HIPAA HITECH to their already advanced PCI hosting solution, making sure it adheres to the HIPAA hosting guidelines. They offer both private and public hosting cloud, as well as a hybrid solution (combining both). Datapipe combines their HIPAA compliant web hosting solution with a whole range of monitoring and management solutions for allow for full hands-off hosting.
Datapipe is an enterprise level HIPAA hosting provider and will provide a custom quote for each customer’s hosting requirements.
>> Learn more about HIPAA Compliant Hosting with Datapipe
ViaWest
ViaWest is a leading Hybrid IT Solutions provider offering cloud, colocation, compliance services and security solutions, and is a wholly-owned subsidiary of Shaw Communications Inc. (NYSE: SJR). With more than 17 years of experience, 30 North American data centers and multiple cloud nodes, ViaWest offers IT and infrastructure solutions that solve business challenges while balancing cost, scalability and security requirements.
ViaWest’s Healthcare IT solutions include a fully audit-ready Compliance-as-a-Service HIPAA Compliant Cloud, Compliant colocation services to support HIPAA physical security, and HIPAA compliance support for public cloud environments.
>> Learn more about the HIPAA Compliant Cloud from ViaWest
>> Learn more about Compliance Enabled AWS solutions from ViaWest
Connectria
Connectria offers enterprise level HIPAA compliant hosting solutions at a mid-range pricing level. You can choose to host in their own data centre of with Amazon AWS, for which they build their own custom solution. Connectria partnered up with TripWire to offer HIPAA compliance monitoring (read press release). Connectria has a pretty aggressive SLA offering a 100% uptime guarantee as well as a 100% secure guarantee.
Pricing for a Connectria HIPAA hosting solution starts at $665 per month, but a custom quote needs to be made depending on your hosting requirements.
>> Learn more about HIPAA Compliant Hosting with Connectria
>> Learn more about HIPAA hosting on Amazon AWS with Connectria
Atlantic
Atlantic offers a full range of HIPAA hosting and related HIPAA compliance products. You can choose for HIPAA compliant server hosting, but also for more specialized HIPAA compliant database hosting, application hosting or backups. You can also decide to place your own servers in their HIPAA compliant data center. All of the products are combined with active and aggresive monitoring for security purposes.
Pricing for Atlantic HIPAA hosting starts at $385 per month for a HIPAA compliant dedicated server.
>> Learn more about HIPAA Compliant Hosting with Atlantic
>> Learn more aboutAtlantic’s HIPAA Hosting pricing
Carpathia
Carpathia is an enterprise level HIPAA hosting provider, position itself as industry leader by providing extensive white papers on healthcare security. Carpathia offer HIPAA compliant cloud hosting, managed hosting and co-location. They currently have a very advanced healthcare hosting solution in beta, called Healthcare Community Cloud Service.
Carpathia is a high-end enterprise level HIPAA hosting provider, where you not only get HIPAA compliant hosting but a full HIPAA compliant infrastructure, priced accordingly.
>> Learn more about HIPAA Compliant Hosting with Carpathia
>> Learn more about Carpathia’s Healthcare Community Cloud Service
hipaa compliant hosting providers, hipaa hosting providers
Source: http://docphy.com/technology/computers/software/full-list-hipaa-compliant-hosting-providers.html
No comments:
Post a Comment