Recipient policy not updating new users
In the case of Paa S Customers, it is the responsibility of the Customer to restrict, secure, and assure the privacy of all e PHI data at the Application Level, as this is not under the control or purview of Datica.
The data and network segmentation mechanism differs depending on the primitives offered by the underlying cloud provider infrastructure: The result of segmentation strategies employed by Datica effectively create RFC 1918, or dedicated, private segmented and separated networks and IP spaces, for each Paa S Customer and for Platform Add-ons.
Datica signs business associate agreements (BAAs) with its Customers.
Datica’s service offerings are available on AWS, Azure, Rackspace, and Soft Layer; current production systems on these platforms are included in Datica’s third-party audits and HITRUST certification.Paa S Customers utilize hosted software and infrastructure from Datica to deploy, host, and scale custom developed applications and configured databases.These customers are deployed into compliant containers run on systems secured and managed by Datica.Within the Datica Platform on Rackspace, AWS, Azure, and Soft Layer, all data transmission is encrypted and all hard drives are encrypted so data at rest is also encrypted; this applies to all servers - those hosting Docker containers, databases, APIs, log servers, etc.Datica assumes all data contain e PHI, even though our Risk Assessment does not indicate this is the case, and provides appropriate protections based on that assumption.