Compliance

Compliance

Regulatory Compliance with Secure Online Backup
Sarbanes-Oxley, FINRA, HIPAA, and other regulations mandate safeguards surrounding the backup, privacy, and availability of sensitive information and certain records. Iron Briefcase goes to extreme lengths to be commercial-grade, offering all the access and security controls regulated industries desire. To certify this claim, Iron Briefcase annually engages a third party audit, known as a SAS 70 Type II, where an independent, accredited firm, conducts an in-depth analysis over a period of time to test the stated controls Iron Briefcase has in place for data protections, redundancies, security, infrastructure, and employment policies.
IronVault Backup & Recovery Compliance
When you choose Iron Briefcase IronVault Backup service, the following features fulfill widespread regulatory and governance demands for data backup and recovery:
• Your data is always encrypted – throughout transmission, storage, and recovery processes
• Data is not easily subject to human touch or tampering as is the case with tapes
• Data is stored on redundant and reliable RAID disk arrays from industry leading vendors
• Data is stored in geographically diverse tier 4 datacenters located 300 miles apart
• You maintain full control over retention requirements and access controls
• Automation ensures disciplined and auditable backup and offsite storage
• Process integrity checks confirm storage and post logs for audit and email notification
Sarbanes-Oxley
Iron Briefcase IronVault Backup service fulfills the requirements of the Sarbanes-Oxley Act (SOX) as they relate to record retention, records production, internal controls, and record alteration and destruction.

FINRA / FSA
In 2007 The Financial Industry Regulatory Authority (FINRA) was formed by consolidating redundant rules under NASD and NYSE. Under NASD 3510, members are required to maintain business continuity and contingency plans to satisfy obligations to clients in the event of an emergency or outage. A key component to any business continuity plan, the IronVault Backup service fulfills the requirements of FINRA as they relate to data backup, offsite storage, and contingency planning.

HIPAA
Iron Briefcase IronVault data backup service fulfills the requirements of the Health Information Portability & Accountability Act (HIPAA), including data integrity, authentication, contingency planning, and access and audit controls as they relate to electronic Protected Health Information.