HIPAA (Health Insurance Portability and Accountability Act of 1996) requires businesses that process, store or transmit electronic protected health information (ePHI or PHI) to comply with strict administrative, physical and technical safeguards. Liquid Web offers managed dedicated, VPS, and cloud dedicated solutions compliant with HIPAA guidelines.
Often, the consequences of the loss or compromise of protected health information could cause irreparable damage to a client’s reputation, or even serious legal penalties. In order to ensure our clients are protected, we have crafted compliant hosting solutions, making sure technical controls, backup management, safeguards and physical security policies are in place, all to verify that your data is secured to industry standards.
HIPAA Compliant Hosting is built to satisfy the administrative, physical, and technical safeguards required under the Health Insurance Portability and Accountability Act of 1996 (HIPAA). Depending on the server, that may include a hardware firewall and dedicated, encrypted storage, a locked server cabinet, and customized software for intrusion detection, log management, and more.
Anyone who collects, transmits, or creates electronic protected health information (ePHI) is considered a covered entity and must be HIPAA compliant. That includes not only health care providers and health insurance providers, but also other entities such as IT providers, consultants, and cloud storage providers who store, process, or otherwise may have access to their data.
The need for additional components such as a hardware firewall, secure server cabinet, and customized software means that HIPAA Compliant hosting is generally more expensive than a standalone dedicated server. Liquid Web’s Dedicated Server HIPAA solutions start at $429/mo. (Linux) and $471/mo. (Windows).
Violations — intentional or otherwise — carry fines that are levied in tiers, with minimum fines ranging from $100 to $50,000 per violation.