GIGA Data Centers maintain rigorous compliance standards for data center operations, security and reliability.
Enterprise-Class Industry Standards
GIGA Data Centers maintains industry standard compliance requirements within our data centers. We provide controls over physical access and environmental systems that house critical data systems and hardware to help you address a wide variety of regulatory requirements.
SOC 2 Type 2
SOC 2 is an attestation standards issued by the American Institute of Certified Public Accountants (AICPA). The SOC 2 report is intended to meet the needs of a broad range of users that need to understand internal control at a service organization as it relates to security, availability, processing integrity, confidentiality, and privacy.
Each year, an external auditing firm completes System and Organization Controls SOC 2 Type 2 reviews of our data center facilities. The reports provide our customers with the assurance of corporate controls, including security and environmental compliance, and validation of GIGA Data Centers’ commitment to the most rigorous standards of excellence in our data center operations.
HIPAA requires that covered entities take strong measures to protect the privacy and security of electronic protected health information (ePHI). By attaining HIPAA validation through an external attestation, GIGA Data Centers provides assurance to healthcare providers and other related enterprises that its multi-tenant data centers conforms to a high standard of data security and provides a secure environment for customers’ sensitive and confidential data.
The validation asserts that the information security program governing the colocation services implements applicable control guidance in the HIPAA Security Rule and the Health Information Technology for Economic and Clinical Health Act (HITECH) Breach Notification requirements.
PCI DSS v3.2
The PCI DSS is a comprehensive set of standards that require merchants and service providers that store, process, or transmit customer payment card data to adhere to strict information security controls and processes. As a provider of data center colocation services, GIGA Data Centers has proactively met the relevant requirements for its business in support of the PCI compliance needs of its customers.
Each year, a Quality Service Assessor (QSA) completes an external assessment to validate GIGA Data Centers’ compliance with the Payment Card Industry (PCI) Data Security Standard (DSS) as a “Level 1” service provider for our colocation services. The scope of GIGA Data Centers’ assessment includes physical security and related policies at our data center facilities.