Sign Up

Regulatory Compliance

SqlBak is your reliable regulatory compliance partner

How about your disaster recovery plan?

Currently many businesses are required by certain laws to keep a complete backup of all their electronic documentation and transactions. Usually regulations imply that companies representing specific industries must maintain their data confidential, preserve their financial records for a specific period of time, ensure overall information security, etc. Naturally, because of that some industries are facing a challenge in implementing and enforcing systems that will meet their data backup and recovery needs.

Companies that must comply with such regulations include, but not limited to, legal, healthcare, management, financial and accounting firms. SqlBak was created with a vision to help such regulated firms to avoid increasing penalties and fees for violating the regulations, avoid unprecedented levels of implementation pressure and costs, and ultimately ensure complete compliance with the Health Insurance Portability and Accountability Act (HIPAA), the Gramm–Leach–Bliley Act (GLBA), the Sarbanes-Oxley (SOX) Act , and regulations of the Securities and Exchange Commission (SEC) and the National Association of Securities Dealers (NASD), etc.

SqlBak team will make sure that your crucial business data is securely stored and you will be able to promptly access it via the Internet at any time and from any place.

SqlBak will ensure your business compliance by providing your company with the following:

  • you have an option to encrypt your data automatically and keep it in an encrypted storage;
  • data encryption prevents unauthorized access, tampering and alterations;
  • your data will be accessible via Internet at any time and from any place;
  • your data will be securely transferred by using 256-bit AES encryption.

SqlBak is fully PCI DSS compliant.

SqlBak is fully PCI DSS compliant.

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that ALL companies that accept, process, store or transmit credit card information maintain a secure environment.
SqlBak has no access to credit card data. Credit card handling and storage is performed by Stripe. Stripe is certified as a PCI Level 1 Service Provider - the most stringent level of certification available in the payments industry.

SqlBak compliance is validated annually by Stripe. Attestation of Compliance (AoC) is available upon request.

Compliance with the Health Insurance Portability and Accountability Act (1996)

The Health Insurance Portability and Accountability Act (HIPAA) was enacted by the U.S. Congress in August 1996 and signed by the then President Bill Clinton. more...

The Health Insurance Portability and Accountability Act (HIPAA) was enacted by the U.S. Congress in August 1996 and signed by the then President Bill Clinton. Its two leading sponsors were Kassebaum and Kennedy. As far as Privacy Rule is concerned, its effective compliance date was April 14, 2003. This rule regulates the disclosure of Protected Health Information (PHI) held by such entities as health care providers, health care clearinghouses, health insurance companies, employer sponsored health plans, and medical service providers that participate in specific transactions. PHI is any information held by a covered entity which concerns health status, provision of health care, or payment for health care that can be linked to an individual.

HIPAA requires the above entities to take reasonable steps to limit the use or disclosure of protected health care information to the minimum that is necessary to accomplish the purpose of HIPAA. This includes establishing and maintaining appropriate and reasonable technical, physical and administrative safeguards to ensure that information is integral, available and confidential. Organizations involved in health care are required to assess their privacy and security requirements and determine proper protection measures on their own. SqlBak is a company that is able to ensure the protection of critical health care data without compromising patient privacy and by doing so its customers will get complete compliance with the requirements of HIPAA. less...

Compliance with the Sarbanes-Oxley Act of 2002

The Sarbanes-Oxley Act (SOX) was enacted in July 2002 and is also known as "Public Company Accounting Reform and Investor Protection Act" and "Corporate and Auditing Accountability and Responsibility Act". more...

The Sarbanes-Oxley Act (SOX) was enacted in July 2002 and is also known as "Public Company Accounting Reform and Investor Protection Act" and "Corporate and Auditing Accountability and Responsibility Act".

The main purpose of Sarbanes-Oxley Act of 2002 is to establish verifiable security controls that will protect against confidential data disclosure, and track employees to avoid accounting errors and fraudulent financial activities. These requirements first of all concern financial reports and, therefore, their keeping becomes very important as they must be kept completely secure.

Being an online data storage facility SqlBak does not see the contents of your data, its primary purpose is to ensure availability and protection of information that is being stored in compliance with all applicable requirements and quality standards. At the same time the client is responsible for what kind of materials they store and who has access to it.

Clients of SqlBak can achieve SOX compliance in the following areas:

  • your data is transferred and stored using 256-bit AES encryption. Moreover, your data is encrypted and decrypted based on the password defined by user. This means that no third party can decrypt your data except your designated representatives;
  • access to your data is based on encryption password that is only available to you and you decide who shall access to your files;
  • fast and secure backups that are immediately available;
  • you can keep your data for as long as you want, there is no time restriction;
  • whenever a document is accessed by user SqlBak logs date and time stamp, so that you can track who accessed your files and date and time of such access. less...

Compliance with the Gramm-Leach-Bliley Act (1999)

GLBA covers many financial institutions such as banks, credit unions, brokerages, thrifts, insurance firms, in other words companies that offer financial products or services to individuals. Such financial activities include loans, mortgages, financial or investment advice, insurance, tax planning, etc. more...

The Gramm-Leach Bliley Act (GLBA), also known as the Financial Services Modernization Act of 1999, was enacted in November 1999.

GLBA covers many financial institutions such as banks, credit unions, brokerages, thrifts, insurance firms, in other words companies that offer financial products or services to individuals. Such financial activities include loans, mortgages, financial or investment advice, insurance, tax planning, etc.

GLBA forces financial institutions to assess how they manage private data and to do risk analysis of their current processes. Also GLBA applies privacy control requirements on a wide range of private personal information as well as personally identifiable financial information.

SqlBak always makes sure that your data is backed up, stored, encrypted and is immediately available. For that we employ a number of state-of-the-art methods, equipment and technology. The health of backups is regularly checked to make sure that your information is safe. Moreover, you can always get a detailed report to show regulators a clear picture of the chain of custody of the information you store with us.

Your data will be encrypted before transmission and will always remain encrypted. In addition, access to your data is restricted by password authentication and is date and time-stamped by users.

SqlBak has no access to the contents of your data, so it is up to you to maintain the data in a manner that is compliant with GLBA. We will store your data for as long as you want us to keep it for you. less...

Securities and Exchange Commission (SEC) / National Association of Securities Dealers (NASD) Compliance

SqlBak understands the complex compliance requirements of regulated companies like yours as well as the problem of increasing number of electronic communications. Safeguarding your financial records and electronic communications with SqlBak is a smart way to protect your company from data corruption, unforeseen legal circumstances and to comply with the requirements of the SEC and NASD. more...

As far as storage of financial records and electronic communication is concerned, Securities and Exchange Commission as well as National Association of Securities Dealers both have issued specific regulations that require compliance.

SqlBak understands the complex compliance requirements of regulated companies like yours as well as the problem of increasing number of electronic communications. Safeguarding your financial records and electronic communications with SqlBak is a smart way to protect your company from data corruption, unforeseen legal circumstances and to comply with the requirements of the SEC and NASD.

SqlBak can assist financial institutions with SEC/NASD compliance through the following:

  • your data is stored on state-of-the-art NAS/ SAN storage devices with many levels of redundancy;
  • regular backups provide you with a 100% guarantee that your data is available to you at any point in time;
  • you will be able to locate and retrieve your electronic communications promptly;
  • data automatically passes health check and verification every time a backup is created;
  • your data is available to you and your authorized users any time from any place;
  • your data can be stored with SqlBak for as long as you need it. less...