Questions? Feedback? powered by Olark live chat software

Compliance Standards for Hosting


certified seal

We are ready to take on the burden of your IT compliance.

Many of these standards require audits and reviews from outside parties to ensure the privacy and safety of your data. Regardless of your industry, you can be sure that Fpweb.net upholds the highest standards and fulfills all requirements necessary for you to confidently host your Microsoft® SaaS solution with us.

Fpweb.net SharePoint Hosting meets these compliance guidelines:

  • Records Management
  • Server Side Auditing
  • Client Side Auditing
  • Barcodes and Labeling
  • Information Rights Management (IRM/WRM)
  • Digital Signatures
  • Workflows
tier iii standard

Fpweb.net Tier III

Fpweb.net's Tier III Data Center Standard means that all our hosting facilities comply with the Uptime Institute data center standards.

Data center standards determine the level of reliability you can expect from your hosting facility as developed and measured by the Uptime Institute, the industry specialist. Tier III builds upon the redundancy and reliability of the first two tiers and adds a level of resilience known as N+1 redundancy that ensures system availability in the case of component failure.

Why is the Tier III Data Center Standard important?

  • The Tier III standard is known for its impressive ability to comply with small to large businesses.
  • Meets or exceeds all Tier 1 and Tier 2 requirements.
  • Multiple independent distribution paths serving the IT equipment.
  • Dual-powered, fully compatible IT equipment.
  • Expected availability of at least 99.982%
SSAE 16 Tyle II Certified

SSAE 16 Certified Data Centers

SSAE 16 SOC I, is an internationally recognized auditing standard developed by the American Institute of Certified Public Accountants (AICPA).

A SSAE 16 SOC I audit is widely recognized because it represents that a service or outsourcing organization has been through an in-depth audit of their control activities, which generally include controls over information technology and related processes. As one of the highest industry accepted auditing standards for service companies, SSAE 16 SOC I certification provides customers with guaranteed security and reliability for their systems.

Why is SSAE 16 SOC I Important to You?

  • Anyone who is concerned about data security should trust only SSAE 16 SOC I Certified Hosting Providers like Fpweb.net.
  • Demonstrates the establishment of control objectives and effectively designed control activities
  • If you are part of a publicly traded company that must comply with Sarbanes-Oxley or HIPAA compliances, you are required to obtain this audit report.
  • This third party perception provides instant credibility and differentiates from the competition
  • Provides reassurance that your data is being handled by service professionals that have a clearly defined and secure process for data eradication
Sarbanes Oxley Compliance

Sarbanes Oxley Compliance

The Sarbanes-Oxley Act outlines strict governance and control standards for public companies & public accounting firms and provides additional oversight to corporate accounting.

Also known as SOX, Sarbox or the Public Company Accounting and Investor Protection Act of 2002, is a compliance standard required of all corporations, public companies or public accounting firms. Fpweb.net provides a way to reduce the infrastructure and management cost of SOX compliance by hosting our solutions in a SOX 404 compliant environment.

Why is Sarbanes Oxley Compliance important?

  • SOX Compliance is a costly burden for large corporations and public auditors.
  • Fpweb.net removes this compliance burden from your data management team.
  • You gain a better understanding of control design and operating effectiveness.
  • It's easier to discover duplicate controls that must be eliminated.
  • SOX combats fraud, improves reliability of financial reporting and restores investor confidence.
NIST Compliance

National Institute of Standards and Technology (NIST)

Fpweb.net's Data Centers follow standards set by NIST (National Institute of Standards and Technology), a US Government agency within the Commerce Department.

"The National Institute of Standards and Technology (NIST) is a non-regulatory federal agency under the Department of Commerce. It is the National Measurement Institute for the United States. The NIST's mission is to support and develop measurement standards and technology in order to improve efficiency, facilitate trade, and enhance the quality of life."
www.professionalequipment.com

Why is NIST Compliance important?

  • Data Centers are measured by their infrastructure and deployment of IT and applications.
  • NIST works in collaboration with government, industry and standards bodies to boost the adoption of cloud computing by the federal government.
  • NIST develops standards that ensure the conformity and enhance the quality of products.
  • These NIST standards support interoperability, portability and security requirements
  • Meeting NIST compliance standards is just another way that Fpweb.net provides a trusted hosting experience for our customers.
PCI Compliance

PCI Compliant Hosting

The Payment Card Industry Security Standards Council outlines the national standard taken to combat credit card fraud and increase the amount of controls placed on any cardholder data.

The PCI Security Standards Council was founded by American Express, Discover Financial Services, JCB International, MasterCard, and Visa Inc. to increase security around payment account data while also raising education and awareness of the PCI Security Standards. PCI compliance protects transaction data and follows security standards set for account data protection.

Why is PCI Compliance important?

  • Secures any organization handling cardholder information for the major debit, credit, prepaid, e-purse, ATM and POS cards.
  • Information security is pivotal for any business, specifically when dealing with ecommerce.
  • Compliance fosters trust and confidence in doing business with sensitive payment card information
  • Fpweb.net's various hosting solutions are PCI compliant-ready so there is no question that your customer's information is safe with you, and your business is safe with Fpweb.net.
ISO 9000 Compliance

ISO 9000 Compliance

The ISO 9000 family of standards represents an international consensus on good quality management practices related to quality management systems and connected supporting standards.

The ISO 9000 family addresses quality management, specifically what is done to fulfill customer quality and applicable regulatory requirements, while enhancing customer satisfaction and achieving continual performance improvement. ISO 9001:2008 is the standard that provides a set of standardized requirements for a quality management system, regardless of what the user organization does, its size, or whether it is in the private, or public sector.

Why is ISO 9000 compliance important?

  • Without satisfied customers, an organization is in peril! To keep customers satisfied, the organization needs to meet their requirements.
  • The ISO 9001:2008 standard provides a tried and tested framework for taking a systematic approach to managing the organization's processes so that they consistently turn out product that satisfies customers' expectations.
  • ISO 9001:2008 is the only standard in the family against which organizations can be certified - although certification is not a compulsory requirement of the standard.
IPv6 Compliance

IPv6 Compliant Hosting

IPv6 anticipates the eventual problem of IPv4 running out of internet addresses. IPv6 uses 128-bit addresses and has 7.9×1028 times more addresses IPv4, which uses 32-bit addresses.

Developed by the Internet Engineering Task Force, the latest Internet Protocol version 6 promises to solve and accommodate the issue of consumers utilizing more and more devices to access the internet. While IPv4 only allowed 4,294,967,296 unique addresses worldwide (or less than one address per person alive in 2012), IPv6 allows for 4.8×1028 addresses per person.

Why is IPv6 Compliance important?

  • It follows a recent Government mandate for all Government external facing sites.
  • Fpweb.net is IPv6 compliant with dual stack capabilities, offering both IPv4 and IPv6.
  • With 4.8×1028 addresses per person, IPv6 provides enough addresses to never run out.
HIPAA Compliance

HIPAA Compliant Hosting

The Health Insurance Portability and Accountability Act (HIPAA) outlines the national standards for security and privacy of Healthcare information.

Fpweb.net's HIPAA-compliant data center facilities provide secure cloud hosting for electronic healthcare records & patient data. Specifically for hosting and records management, HIPAA outlines the compliance requirements for health care electronic transactions and identifiers for providers, health plans, and employers.

Why is HIPAA Compliance important?

  • HIPAA regulations protect healthcare patients and their information and coverage.
  • This compliance benefits the environment by reducing paper in the industry.
  • This standardizes all healthcare data and helps coordinate insurance benefits and payments.
  • HIPAA helps eliminate health plan-specific reporting and filing requirements for hospitals.
  • HIPAA compliance hosting places administrative, physical and technical safeguards around your data.
FDA Part 11 Compliance

FDA Part 11 Compliance

Part 11 of the Code of Federal Regulations is directed at the Food and Drug Administration (FDA) regarding specific guidelines on electronic records and signatures.

FDA Part 11 compliance applies to any organization that must meet the requirements and compliance policies set forth by the FDA for electronic records management. Typically involves pharmaceutical industry, drug makers, biotech industry, medical device manufacturers, CROs and more.

Why is FDA Part 11 Compliance important?

  • These requirements make organizations trustworthy and reliable.
  • Compliant records and signatures can be treated the same as paper documents.
  • Businesses can substitute paper records and handwritten documents with electronic records and electronic signatures to improve efficiency.
  • Compliant documents benefit from user/time stamping of records.

Safe Harbor Declarations for Fpweb.net

  1. Fpweb.net LC adheres to the U.S.-EU and U.S.-Swiss Safe Harbor Privacy Principles
  2. Independent recourse mechanism to investigate unresolved complaints is available via the BBB EU SAFE HARBOR.
  3. Safe Harbor questions, complaints, access requests or any other issues arising under Safe Harbor may be addressed to legal@fpweb.net

Fpweb.net LC (Fpweb.net) complies with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Harbor Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland. Fpweb.net has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement.

To learn more about the Safe Harbor program, and to view Fpweb.net's Safe Harbor Certification, please visit www.export.gov.

This means that all Fpweb.net customer data covered by its self-certification is pre-approved to move freely in and out of European Union (EU) countries and Switzerland, making the connection with these countries more time and cost efficient.

The European Commission's Directive on Data Protection (Directive) prohibits the transfer of personal data outside of the EU to non-EU countries that do not meet the European "adequacy" standard for privacy protection. The Swiss Federal Act on Data Protection (FADP) includes similar restrictions on the transfer of personal data outside of Switzerland. While the United States, the European Union (EU), and Switzerland share the goal of enhancing privacy protection for their citizens, the United States takes a different approach from that taken by the EU and Switzerland.

In order to bridge these different privacy approaches and provide a streamlined means for U.S. organizations to comply with the Directive and the FADP, the U.S. Department of Commerce in consultation with the European Commission developed a "Safe Harbor" framework ("U.S.-EU Safe Harbor Framework"). The U.S. Department of Commerce in consultation with the Federal Data Protection and Information Commissioner of Switzerland developed a separate, but similar “Safe Harbor” framework ("U.S.-Swiss Safe Harbor Framework"). The Safe Harbor Frameworks are an important way for U.S. organizations to avoid experiencing interruptions in their business dealings with the EU or Switzerland. Self-certifying under the Safe Harbor program will assure EU and Swiss organizations that Fpweb.net provides "adequate" privacy protection, as defined by the Directive and the FADP.

For example, the U.S.-EU Safe Harbor program provides a number of important benefits to U.S. and EU firms. Benefits for U.S. organizations participating in the program include:

  • All 28 Member States of the European Union will be bound by the European Commission’s finding of adequacy
  • Organizations participating in the U.S.-EU Safe Harbor will be deemed adequate and data flows to those orgnanizations will continue;
  • Member State requirements for prior approval of data transfers either will be waived or approval will be automatically granted
  • Claims brought by European Union residents against U.S. organizations will be heard in the United States subject to limited exceptions.

In compliance with the U.S.-EU and U.S.-Swiss Safe Harbor Privacy Principles, Fpweb.net commits to resolve complaints about your privacy and our collection or use of your personal information. European Union and Swiss residents with inquiries or complaints regarding this privacy policy should first contact Fpweb.net at:

Fpweb.net LC
1714 Gilsinn Lane
Fenton, MO 63026

Fpweb.net has further committed to refer unresolved privacy complaints under the U.S.-EU and U.S.-Swiss Safe Harbor Privacy Principles to an independent dispute resolution mechanism, the BBB EU SAFE HARBOR, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed by Fpweb.net, please visit the BBB EU SAFE HARBOR web site at www.bbb.org/us/safe-harbor-complaints for more information and to file a complaint.

© Copyright 2014; Fpweb.net LC. All Rights Reserved