May 10, 2018
What is HITRUST?
HITRUST certification by the HITRUST Alliance enables vendors and covered entities to prove HIPAA compliance based on a standardized framework.
Travis Good, MD
Co-founder & Former Chief Technology Officer
hitrust
April 19, 2018
Proving HIPAA Compliance
HIPAA attestation is everywhere but are they really compliant? Companies can self-attest to HIPAA compliance because there are no HIPAA certifications.
Travis Good, MD
Co-founder & Former Chief Technology Officer
hipaa
April 16, 2018
Why HIPAA is not PCI
This post discusses HIPAA and different types of hosted infrastructure options, answering the question of why HIPAA is not PCI.
Travis Good, MD
Co-founder & Former Chief Technology Officer
hipaa
April 10, 2018
Business Associate Agreements
With ePHI access, business associates are required to sign a HIPAA business associate agreement (BAA). Learn more about business associate agreements here.
Travis Good, MD
Co-founder & Former Chief Technology Officer
hipaa
March 21, 2018
HIPAA 101 A primer
The HIPAA acronym stands for the Health Insurance Portability and Accountability Act. This HIPAA primer covers HIPAA 101 basics, meaning, entitities, etc.
Travis Good, MD
Co-founder & Former Chief Technology Officer
hipaa
February 8, 2018
What is GxP?
GxP stands for "Good Practice" and is a set of operational controls for Life Sciences organizations working within the confines of the FDA. Learn more about GxP compliance.
Kris Gösser
Former Chief Marketing Officer
gxp
February 8, 2018
GxP and Business Associates: Does it exist like HIPAA?
GxP does not have the concept or BAAs or contracts that outline risk like HIPAA does. There is no concept of inheritance or chaining liability. Learn more here.
Kris Gösser
Former Chief Marketing Officer
gxp
January 18, 2018
GDPR Fines and Penalties
GDPR compliance is an imperative starting May, 2018 for companies who work with data on EU citizens. Understand the fines and penalties in Article 83.
Travis Good, MD
Co-founder & Former Chief Technology Officer
gdpr compliance
January 12, 2018
HIPAA and Multi Tenancy
What exactly is multi tenant cloud and does Datica Compliant Cloud offer a multi tenant environment?
Ryan Rich
Former Chief Product Officer
hipaa
January 10, 2018
GDPR Data Breach Notification Checklist
This GDPR data breach notification checklist outlines the steps that should be orchestrated by your data protection officer to ensure GDPR compliance.
Travis Good, MD
Co-founder & Former Chief Technology Officer
gdpr
January 9, 2018
GDPR Data Breach Requirements
One of the most challenging aspects of any security and compliance program, including GDPR, is breach notification.
Travis Good, MD
Co-founder & Former Chief Technology Officer
gdpr
January 9, 2018
What is a Data Breach under GDPR and HIPAA?
What is the definition of a security incident and data breach under HIPAA and GDPR and how do they compare? This article breaks down the key terminology.
Travis Good, MD
Co-founder & Former Chief Technology Officer
gdpr
January 5, 2018
GDPR for Cloud Service Providers (That's You!)
Cloud Service Providers doing business in the EU are Processors under GDPR—it's kind of like being a HIPAA Covered Entity in the U.S. Read more on GDPR Service Providers.
Kris Gösser
Former Chief Marketing Officer
gdpr
May 24, 2017
HIPAA Compliance at the Application Level
While HIPAA Compliance at the infrastructure level is heavy on technology, HIPAA Compliance at the application level is more of a blend of technology and policy.
Kris Gösser
Former Chief Marketing Officer
hipaa healthcare cloud
January 12, 2016
HIPAA Risk Assessment and Management
A risk assessment – a HIPAA requirement – is the first thing to do since it frames many decisions you'll make regarding your security posture.
Travis Good, MD
Co-founder & Former Chief Technology Officer
hipaa