Click here to monitor SSC
SQLServerCentral is supported by Redgate
 
Log in  ::  Register  ::  Not logged in
 
 
 


HIPAA in on SQL Azure, on hosted SQL 2008 R2 or only on premises?


HIPAA in on SQL Azure, on hosted SQL 2008 R2 or only on premises?

Author
Message
drew.georgopulos
drew.georgopulos
Old Hand
Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)

Group: General Forum Members
Points: 375 Visits: 705
I've been asked to investigate moving part or all data processing off premises, and acting on a tip from twitter, I encountered what I think may be a show stopper. While it seems that Office is covered by MS on the HIPAA BAA, if you read to scope section at the very bottom of this document:
http://www.windowsazure.com/en-us/support/trust-center/compliance/
it seems that SQL Azure is exempt from the HIPAA BAA, which I think makes it a non-starter for HIPAA sensitive applications.
Am i reading this wrong?

Does this mean that HIPAA sensitive data must be maintained on premises or is it acceptable buy hosted database services from Amazon or Rackspace et al but not on SQL Azure?
Thanks for your help, as I am in the dark!
Karen Lopez @datachick
Karen Lopez @datachick
SSC Rookie
SSC Rookie (46 reputation)SSC Rookie (46 reputation)SSC Rookie (46 reputation)SSC Rookie (46 reputation)SSC Rookie (46 reputation)SSC Rookie (46 reputation)SSC Rookie (46 reputation)SSC Rookie (46 reputation)

Group: General Forum Members
Points: 46 Visits: 193
Windows Azure services have been expanding their compliance initiatives over the years, but I believe your interpretation is correct that WASD is not currently included in the HIPAA BAA.

Keep an eye on that compliance statement page to ensure that you have the most up to date information.

Karen
drew.georgopulos
drew.georgopulos
Old Hand
Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)Old Hand (375 reputation)

Group: General Forum Members
Points: 375 Visits: 705
Thank you so much for your confirmation, even though I wouldn't call it good news
That said, I did get a real good laugh out of seeing you described as a rookie <g>.
Thanks again
drew
Go


Permissions

You can't post new topics.
You can't post topic replies.
You can't post new polls.
You can't post replies to polls.
You can't edit your own topics.
You can't delete your own topics.
You can't edit other topics.
You can't delete other topics.
You can't edit your own posts.
You can't edit other posts.
You can't delete your own posts.
You can't delete other posts.
You can't post events.
You can't edit your own events.
You can't edit other events.
You can't delete your own events.
You can't delete other events.
You can't send private messages.
You can't send emails.
You can read topics.
You can't vote in polls.
You can't upload attachments.
You can download attachments.
You can't post HTML code.
You can't edit HTML code.
You can't post IFCode.
You can't post JavaScript.
You can post emoticons.
You can't post or upload images.

Select a forum

































































































































































SQLServerCentral


Search