We are partnered with Microsoft Office to provide the best HIPAA compliant cloud services available.
Compliant Cloud Services
Office 365 HIPAA compliance is dependent on how it is used. Microsoft implements end-to-end encryption for data stored or uploaded to servers, as well as data transferred beyond its’ servers. However, the names of files, subject line of emails, and message headers are not encrypted. Therefore, to use Office 365 in a HIPAA compliant manner, organizations must ensure that PHI is not contained in these areas.
In addition, HIPAA requires that healthcare organizations implement access management. Access management allows administrators to limit data access by designating employees access levels based on their job role. By implementing access controls, you can track which employees access what data, and how frequently they access it, referred to as audit logs. Office 365 is capable of creating audit logs that are available upon request.
Our Managed IT Services
Manage sensitivity labels in Microsoft 365 Apps (Office 365 ProPlus/Business client apps)
Manually apply sensitivity labels in Office for the Web and Office Mobile
Manually apply sensitivity labels to data in 3rd party clouds
Apply and view sensitivity labels in Power BI, and protect data when it is exported to Excel, PowerPoint or PDF
Enable 3rd party integration into Microsoft Information Protection (MIP) using MIP SDK
Office 365 Message Encryption
Bring Your Own Key (BYOK) for customer-managed key provisioning life cycle13
Manually apply non-record retention labels
Apply a basic retention policy to the entire organization, specific locations or users
Email archiving
Protection for on-premises Exchange and SharePoint content via Rights Management connector
Content Search (Search and Export)
Basic Audit (Unified Audit Log)
Compliance Manager