Home
Join

3 Replies

  • We will continue to use a hybrid approach, choosing very carefully which data gets offloaded to a cloud provider. Currently we have email and HR functions in the cloud. Next we'll send some very old backup files to cloud storage (after encryption, of course). Beyond that, I'm not sure anything else will go.

    Spice (1) flagReport
    Was this post helpful? thumb_up thumb_down
  • The use of cloud resources is far more complicated for an organization encumbered by regulations like PCI DSS or HIPAA.  Few and far between are the vendors who understand that their obligations go far beyond signing a BAA. Rarer still are those that are willing to "lift the skirts" of their operations to the point where we, a prospective customer, can perform due diligence and satisfy ourselves that the risk to sensitive data is acceptable.

    Spice (1) flagReport
    Was this post helpful? thumb_up thumb_down
  • Glenn_P wrote:

    We will continue to use a hybrid approach, choosing very carefully which data gets offloaded to a cloud provider. Currently we have email and HR functions in the cloud. Next we'll send some very old backup files to cloud storage (after encryption, of course). Beyond that, I'm not sure anything else will go.

    I can imagine that choosing which data gets moved to a cloud provider can be a long and very thorough process, as it should be. I would definitely hope that all healthcare organizations that do choose to offload some things to the cloud take the same careful approach in the process.  
    Was this post helpful? thumb_up thumb_down

Read these next...