GDPR and HIPAA Compliance with Chino.io

Chino.io gives you much more than normal Cloud

Chino.io shared responsibility model covers security and compliance tasks. You only have to ensure administrative ones.

The EU and US laws and requirements to consider, analyze, and implement to ensure compliance

EU Data Protection Laws & Guidelines

The new General Data Protection Regulation (GDPR) defines strict penalties for not compliance and stricter rules for data processing.
Read more

Individual countries’ data protection laws and standards

Each EU member state, and sometimes even single regions (e.g. in Germany), define rules and requirements for healthcare sector and apps. Mostly these rules affect only those working with public bodies in healthcare sector, while in others they apply to any service dealing with health sensitive data.
Read more

HIPAA Compliance

(Available soon) The HIPAA - Health Insurance Portability and Accountability Act defines policies, procedures and guidelines for maintaining the privacy and security of individually identifiable health information as well as outlining numerous offenses relating to health care and sets civil and criminal penalties for violations. It also creates several programs to control fraud and abuse within the health care system
Read more

International Cyber Security Standards and Regulations

These are defined also by organizations such as ENISA, OWSP or ISO (e.g. ISO 27002 controls). They define more technical requirements, controls, security principles, and quality management principles that must be applied during software development.
Read more

These are some of the requirements that Chino.io implements to help you to ensure compliance

Technical

  • Access control

  • Encryption of data in transfer

  • Encryption of data at rest (Storage)

  • Secure audit log

  • Backup strategy

  • Reliability (QoS and SLA)

  • and many more

Infrastructural

  • Reliable hosting infrastructure

  • Processing and storage located in the EU

  • Physical infrastructure protection

  • Certification depending on the nature of your health app

  • and many more

Administrative

  • Provide you security risk assessments

  • Help you on documenting your data processing

  • Help you on Data Portability

  • Help you on Right to be Forgotten

  • and many more

Certified even for medical grade software

Certified ISO9001

The key to the ongoing certification under ISO 9001 is establishing, maintaining and improving the organizational structure, responsibilities, procedures, processes, and resources in a manner where Chino.io services consistently satisfy ISO 9001 quality requirements.

Certified ISO27001

ISO 27001 is a security management standard that specifies security management best practices and comprehensive security controls following the ISO 27002 best practice guidance.

LEARN MORE ABOUT COMPLIANCE AND SECURITY

Learn all you need to know about softwares, security and compliance. Become a security expert

Download eBook
IS YOUR SOFTWARE COMPLIANT
& SECURE?

Do our COMPLIANCE TEST and get "Compliance in the EU" guide for free. Discover what you need to implement to be compliant

Start your test now

Ready to start?