Backup and Recovery

Full-featured data backup and recovery

Storage Guardian's remote data backup and recovery technology has undergone rigorous testing for compliance with HIPAA, SSAE 16, FIPS and CICA 5970. Click one of the certifications below to read more about how we support it.

Storage Guardian's technology and services are HIPAA compliant

As of April 2005, HIPAA's security standards mandate that all health care providers establish a contingency plan to respond to any type of computer disaster involving potential data loss. Storage Guardian's technology complies with the following HIPAA requirements:

  • User authentication
  • Role based access
  • Encryption of data (AES128, AES192, AES256 bit encryption)
  • Offsite data storage outside of the organization
  • Secure storage facilities
  • Transmission Reports

Storage Guardian's Internet Vaulting solution is completely secure and can protect your organization in the case of any type of data loss. Please refer to the table below for a more detailed look into how Storage Guardian's secure remote backup solution enables business to instantly comply with HIPAA regulations:

HIPAA Privacy Rule Storage Guardian Covered Entity
§164.530 (c) (1)
*    Administrative
YES Enabled by Storage Guardian
*   Technical
YES Enabled by Storage Guardian
*   Physical
YES Enabled by Storage Guardian
Access to PHI
NO - Covered Entity has the only encryption key YES
Amendment to PHI
NO - Covered Entity has the only encryption key YES
Encryption of PHI

HIPAA Security Standards Matrix Storage Guardian Covered Entity
Assigned Security Officer
YES ...
Access Authorization
NO - Only covered entity
has access to PHI
Security Incident Reporting
YES ...
Contingency Plan: Data Back-up
Contingency Plan: Disaster Recovery
Business Associate Agreement
§164.308(b)(1), 106.103
YES ...
Facility Access Controls
YES ...
Device & Media Controls
Access Control
Transmission Security

SSAE 16 Type II logo

Storage Guardian's technology and services are SSAE 16 Type II compliant in accordance with the AICPA (SOC) framework.

What is SSAE 16 Type II Compliance?

SSAE 16 is the professional standard used for issuing SOC 1 reports, which consists of SOC 1 (SSAE 16) along with SOC 2 and SOC 3 (AT 101) reporting. The SSAE 16 standard effectively replaces the aging and antiquated SAS 70 auditing standard that has been in use for approximately twenty years.

You can find out more about this new standard of compliance here.

What does Storage Guardian's certification mean for your company?

Storage Guardian’s SSAE Type II compliance means that we have undergone attest procedures in accordance with the AICPA professional standard. You can have complete confidence that your data resides within a facility which employs stringent internal business processes and IT controls for the services provided.

What is the certification for Cryptographic Module Validation Program FIPS 140-1 and FIPS 140-2 Modules In Process List?

Modules validated as conforming to FIPS 140-1 and FIPS 140-2 are accepted by the Federal Agencies of both the United States and Canada for the protection of sensitive information. The National Institute of Standards and Technology (NIST) established the Cryptographic Module Validation Program (CMVP) that validates cryptographic modules to Federal Information Processing Standards (FIPS)140-1 Security Requirements for Cryptographic Modules, and other FIPS cryptography based standards.

What does Storage Guardian's certification mean for your company?

It means we have passed rigorous security standards using independent, accredited Cryptographic and Security Testing (CST) laboratories to test our modules against requirements found in FIPS PUB 140-2, Security Requirements for Cryptographic Modules. These requirements cover 11 areas related to the design and implementation of a cryptographic module. NIST's Computer Security Division (CSD) and CSEC jointly serve as the Validation Authorities for the program, validating the test results and issuing certificates.

Cica 5790 Logo

Storage Guardian is CICA 5970 Type B certified by SAS 70 International.

Storage Guardian’s Network Operations Centre and File Sync 'n Share services are protected by Comodo Instant SSL.

Comodo Secure logo

Recognized by 99.9% of all browsers and mobile devices, Comodo is a leading supplier of SSL certificates guaranteeing a high level of encryption for online transactions.

What is Comodo Instant SSL?

Instant SSL by Comodo provides the strongest levels of encryption available, featuring 2048-bit signatures with 256 bit encryption.

What does this mean for you?

This means that Storage Guardian and Comodo are hard at work protecting your data, and you may rest assured that your online transactions with us are securely encrypted.

View the top reasons to protect your data with Storage Guardian

Play a video overview of our top features.

Trusted by leading companies

For more than a decade, we have been the remote data backup and recovery provider of choice for hundreds of companies of all sizes.