With Azure, PIMSY keeps your data safe, secure, and HIPAA-compliant

PIMSY Mental Health EHR proudly announces that we now host all data on Microsoft Azure. For the second consecutive year, Gartner has recognized Microsoft as the only vendor featured across its Magic Quadrants for Cloud Infrastructure as a Service, Application Platform as a Service, and Cloud Storage Services.

Microsoft is also the first cloud provider recognized by the European Union’s data protection authorities for its commitment to rigorous EU privacy laws. Additionally, Microsoft was the first major provider to adopt the new international cloud privacy standard, ISO 27018. With PIMSY, your client and agency data are backed up multiple times daily. We’re proud to join the “more than 57 percent of Fortune 500 companies” that rely on Microsoft Azure.

Azure Keeps Your Data Safe

Microsoft has leveraged its decades-long experience building enterprise software. They run some of the world’s largest online services to create a robust set of security technologies & protocols. They ensure that Azure infrastructure is resilient to attack, safeguards user access to the Azure environment, and protects your data. These methods include encrypting communications, threat management & mitigation practices, and regular penetration testing.

PIMSY hosted on Azure protects your data by:

• Adhering to HIPAA and HITECH protocols:  Microsoft cloud services covered under the BAA are included through the audits conducted by accredited independent auditors for Microsoft’s ISO 27001 certification. They are also covered by the FedRAMP assessments that led to the Provisional Authority to Operate from the FedRAMP Joint Authorization Board (for Microsoft Azure); for an Agency Authority to Operate from the US Department of Health and Human Services (for Microsoft Office 365 U.S. Government); and from the US Department of Housing and Urban Development (for Microsoft Dynamics CRM Online Government). Get the details here.

• Encrypting communications and operation processes: For data in transit, Azure uses industry-standard transport protocols between user devices and Microsoft data centers and within data centers themselves, using 128-bit or 256-bit encryption. Azure offers a wide range of encryption capabilities for data at rest, up to AES-256.

• Securing networks:  Azure uses various technologies to block unauthorized traffic to and within Microsoft data centers. All PIMSY data resides within the Azure infrastructure to further ensure your HIPAA-covered practice records. PIMSY is immune to Browser-based attacks and the whims of Browser updates, plug-ins, add-ons, and extensions.

• Managing threats: To protect against online threats, Azure offers Microsoft Antimalware for cloud services. Microsoft also employs intrusion detection, denial-of-service (DDoS) attack prevention, regular penetration testing, and data analytics learning tools to help mitigate threats to the Azure platform.

Compliance Details & 42 CFR Part 2

PIMSY is compliant with 42 CFR Part 2, in addition to HIPAA: click here for details. For more information about how PIMSY helps protect your agency’s data, contact us: 877.334.8512 – hello@pimsyehr.com

(sources include: Microsoft Azure)