Otava Earns HITRUST Certified Status for Cloud Servers and Services

The Ann Arbor, MI-based HIPAA-compliant hosting company, Otava, has announced it has earned HITRUST Certified Status for information security, covering its private cloud servers, colocation services, and data protection services across five locations in Michigan and Indianapolis and for the OTPortal platform.

The HITRUST Common Security Framework (CSF) is a comprehensive and flexible framework with prescriptive, scalable security controls. The HITRUST CSF meets the requirements of several federal regulations including ISO 27001 and the Health Insurance Portability and Accountability Act (HIPAA). Through adoption of the HITRUST CSF, and by taking a risk-based approach, organizations can ensure appropriate information security controls are implemented to protect sensitive information.

By achieving HITRUST Certified Status, Otava has demonstrated its hosting solutions and self-service portal have met strict, industry-defined requirements for information security and that risk is being effectively managed.

“Security and compliance are the foundation of everything we do at Otava and we hold ourselves accountable to the highest standards,” said Brad Cheedle, CEO at Otava. “The HITRUST CSF is the gold standard that needs to be met, and Otava is pleased to be recognized for our commitment by achieving HITRUST CSF Certification.”

The HITRUST certification is the most recent of several certifications to be obtained by Otava. The company has also passed audits for compliance with HIPAA, the HITECH Act, PCI, EU-US Privacy Shield, SOC 1,2, and 3, and ISO 27001.

Author: Steve Alder has many years of experience as a journalist, and comes from a background in market research. He is a specialist on legal and regulatory affairs, and has several years of experience writing about HIPAA. Steve holds a B.Sc. from the University of Liverpool.