Audits & Compliance

 

Security Certificates

Plain and simple, you cannot risk having your data stored in a facility with sub-par protection. As technology advances, the threats that endanger your data are only becoming more elusive and damaging.

Fibernet strives to stay ahead of cyber threats and continuously updates its security parameters. We are confident in saying we provide premium-grade security for all of our clients. We are consistent in providing the most up-to-date data protection software and are watching out for any threat 24/7.

It is tempting to shirk off data security saying with the old “it happens to others but won’t happen to me” adage. But think of it as you would fire insurance; you will never regret not buying it until it’s too late. You cannot risk having your mission-critical data compromised. You will have much more confidence in your business knowing your information is guarded with the best security measures on the market. Don’t settle for anything less than the strongest security.

Fibernet is an SSAE 18 audited, PCI and HIPAA-compliant data center provider with two facilities that undergo rigorous compliance audits.

Your information is just as valuable to us as it is to you. We will stop at nothing to make sure that data stays safe and secure. You can rest assured your precious data will remain uncompromised and preserved from all the threats and online dangers you hear about.

PCI Compliant

PCI stands for the Payment Card Industry, a group of top credit card companies, such as Visa, Mastercard, and Discover, who established a set of rules for companies dealing with credit card transactions. The standards measure how well a company protects your financial information. Should a business reach these standards, the PCI deems them as reputable or “compliant with these standards.”.

The Payment Card Industry Data Security Standard (PCI DSS) was instituted by the PCI Security Standards Council (PCI SSC) to strengthen credit card data security among merchants worldwide.
The PCI SSC was formed in 2006 by the five major credit card companies (AMEX, Discover, Visa, MasterCard, and JCB International) to combat the growing threat of identity theft and cybercrime with a standardized set of protocols for merchants, called the PCI DSS. A company is deemed “PCI Compliant” when it meets these standards and receives certification from a PCI-accredited auditor. Fibernet became PCI Compliant in 2009 and has maintained its certification ever since.

PCI has six objectives:

  • Network Security: The network is protected from outside threats or corruption.
  • Protected Credit Card Processing: Cardholder data is stored and transmitted securely.
  • Invulnerable Infrastructure: Access to data is controlled and selective.
  • Secure Data Access Policies: The network is protected from outside threats or corruption.
  • Strong System Security: The system is regularly scanned and closely monitored for security breaches.
  • Employee Security Awareness: Company-wide information security policies are present and enforced.

Any company processing or storing credit card information must be compliant with the PCI DSS or be subject to hefty fines as well as the daily risk of a security breach. By performing annual audits to maintain compliance, merchant companies can stay a step ahead of identity thieves and cybercriminals, who are constantly adapting their tactics to exploit weak or outdated systems and procedures. The PCI SSC strives to stay up-to-date with the most current threats and implements defenses across the board by evolving the PCI standards and offering newer tools and strategies.

By request, we can send you Fibernet’s PCI DSS Certificate of Compliance.

By choosing a PCI-compliant company like Fibernet, you can be sure that your data is stored in a location that has been evaluated and approved by a third-party auditor.

SSAE 18 SOC1 Type II Certified

SSAE 18 SOC1 Type II audit ensures that the proper controls and procedures meet the industry standard for a data center facility and operator. Fibernet is a SSAE 18 SOC 1 type II Certified data center provider.

SSAE 18 Audit

SOC 1 Type II reports require a year of continual adherence.

SOC 1 Type II attesters review the financial controls maintained by a company.

A SOC 1 Type II report is an analysis of a service organization’s financial security controls and examines the quality, security, and reliability of the organization’s practices in relation to the SOC 1 criteria.

By request, we can send you Fibernet’s SOC 1 Type II SSAE 18 Certification.

HIPAA Compliance

Medical practitioners understand the importance of complying with HIPAA standards to protect the privacy of their patients’ data.

Becoming compliant with the Health Insurance Portability and Accountability Act (HIPAA) isn’t just a hoop to jump through – it’s a process that when properly completed ensures data safety and privacy.

To help you achieve HIPAA compliance and to fortify you and your patients against vulnerabilities, we offer secure hosting solutions that meet all of HIPAA’s data security requirements. Additionally, we’ve compiled information you’ll need to make sure all of your practice’s controls are up to HIPAA standards in the following areas:

  • Electronic transactions
  • Security processes
  • Privacy controls

Fibernet has all of our information systems and workflow processes documented for your records to ensure that you can provide documentation proving your HIPAA compliance.