Compliance

If you are handling personal information such as financial data or personal health information (PHI) we have the have the tools and technologies to ensure you are protected. Our team is experts in the following compliance standards.

 

PCI COMPLIANCE 

If your site or online application stores, processes or transmits credit card information, you need to comply with the Payment Card Industry Data Security Standard, commonly known as PCI. PCI combines the security standards of the five major credit card companies and is designed to protect payment account data security and prevent financial fraud.  PCI compliance involves meeting 12 security requirements, including firewall configuration, encrypted transmissions, unique identifiers, monitoring and more. BlackMesh’s security experts can examine your current security set-up and help you take the next steps in your PCI compliance strategy. From hosting solutions to intrusion detection systems and more, we can provide everything you need to be compliant. 

HIPAA COMPLIANCE

The Health Insurance Portability and Accountability Act (HIPAA) is designed to ensure the security and privacy of health data and Personal Health Information as it is being transmitted electronically. The act requires physical and technical safeguards, including data confirmation, authentication, encryption, documentation and risk management, to name just a few. Our consultants can help you understand the labyrinth of HIPAA’s compliance standards and give you the tools and advice you need to make the appropriate changes, from electronic transmission to data storage and security procedures.

FISMA COMPLIANCE

The Federal Information Security Management Act (FISMA) of 2002 requires that every federal agency provide security for the information and systems that support the operations and assets of the agency. FISMA is essential to protecting the economic and national security interests of the United States, and as such all contractors or organizations working with or on behalf of federal agencies are required to meet FISMA’s compliance standards. Our security experts can work with your team to examine current security measures and design a plan to ensure you are meeting the standards set out by the federal government. 

SSAE 16 

The Statement on Standards for Attestation Engagement No. 16 (SSAE 16) replaced the Statement on Auditing Standards No. 70 (SAS 70) as of June 15, 2011. The SSAE 16 is an attestation standard put forth by the Auditing Standards Board of the American Institute that addresses engagements undertaken by a service auditor for reporting on controls at organizations.