HIPAA Audit and Attestation Report Supports Healthcare Industry Compliance Requirements for our Customers and Partners

NTT Global Data Centers Americas security program and operational controls comply with essential elements of the Health Insurance Portability and Accountability Act Security Rule

February 20, 2014

NTT Global Data Centers Americas, the nation’s premier data center provider, announced today that its information security program has been examined in accordance with attestation standards established by the American Institute of Certified Public Accountants (AICPA) and that the program complies with the HIPAA Security Rule of 2003, the de facto security standard for the healthcare industry. The review and attestation were conducted by BrightLine CPAs & Associates, Inc., a leading provider of attestation and compliance services and the only company in the world that is a CPA firm, a globally licensed PCI Quali­fied Security Assessor, an ISO Certifi­cation Body, and a FedRAMP 3PAO.

“Each year, we invests in a significant compliance program to ensure that our data center colocation services meet or exceed industry requirements for security and availability,” said Jason Weckworth, senior vice president and chief operating officer at NTT Global Data Centers Americas. “This independent audit report using the HIPAA framework gives our healthcare customers confidence to include NTT Global Data Centers Americas as part of their computing infrastructure.”

NTT Global Data Centers Americas - HIPAA Compliant Data Center

The Health Insurance Portability and Accountability Act (HIPAA) was enacted in 1996 to set national security standards for the security and privacy of electronic protected health information (ePHI) in the healthcare and health insurance industries. BrightLine reviewed NTT Global Data Centers Americas information security program and controls and found that they met the standard and applicable implementation specifications for safeguards as defined by the HIPAA Security Rule. The HIPAA Security Rule requires covered entities to implement or address over 50 administrative, physical, and technical safeguards designed to ensure the confidentiality, availability, and integrity of ePHI, including the prevention of unauthorized access to ePHI.

“The final omnibus rule which went into effect in September of 2013 gave the HIPAA regulations more teeth and notably put more emphasis on the role of business associates that are in the chain of handling PHI,” said Douglas Barbin, principal at BrightLine. ”Our examination was designed to test the controls that NTT Global Data Centers Americas has put in place to meet their respective responsibilities for data center colocation and to be able to communicate those controls to their healthcare customers.”

A number of leading healthcare companies are currently customers of NTT Global Data Centers Americas and will benefit from the HIPAA audit report including: big data and analytics, state health insurance exchanges, medical and dental insurance, pharmacy networks, physician practice management, and healthcare centers.

“With NTT Global Data Centers Americas as our data center provider, we serve over 850 healthcare organizations and process 10,000 data feeds from 65 different healthcare information systems on a daily basis,” said Steve Mosher, director of information technology at MedeAnalytics, a leading provider of performance management solutions across the healthcare system. “The HIPAA framework is critical to our business operations and highly valued by our customers. We congratulate NTT Global Data Centers Americas for its dedication to providing HIPAA compliant data center colocation and its ongoing commitment to superior operations and security controls.”

NTT Global Data Centers Americas provides data center colocation in its facilities in Sacramento, California and Ashburn, Virginia. These award-winning data centers combine to offer 650,000 square feet of space and 51.4 megawatts of critical IT load. NTT Global Data Centers Americas has begun construction on a 150,000 square foot data center in Sacramento and is developing plans for 1.5 million square feet of data center space on 78 acres of land in Ashburn.

In addition to the HIPAA attestation, NTT Global Data Centers Americas compliance program includes FISMA moderate attestation, PCI DSS 2.0 validation, SSAE 16 Type 2 SOC 1, SOC 2 Type 2 examination, LEED Gold certification, and the EPA ENERGY STAR certification.

About NTT Global Data Centers Americas
NTT Global Data Centers Americas designs, builds, and operates mission critical data centers that deliver high-density power and 100% availability. The company has 650,000 square feet of data center infrastructure in Northern California and Ashburn, Virginia and is affiliated with the global network of data centers operated by NTT Communications in 150 locations. Our patented power delivery systems and EPA ENERGY STAR rated facilities lead the data center market in reliability and efficiency. With flexible colocation solutions for retail and wholesale buyers, a carrier neutral philosophy, and the highest customer loyalty in the industry as measured by the Net Promoter Score®, we meets the needs of top enterprise, Internet, and government organizations. More information is available at www.ragingwire.com.