{"id":86,"date":"2020-02-21T16:00:25","date_gmt":"2020-02-21T16:00:25","guid":{"rendered":"http:\/\/bosframework.com\/blog\/?p=86"},"modified":"2020-11-09T16:19:31","modified_gmt":"2020-11-09T16:19:31","slug":"bos-supports-hipaa-conformance-out-of-the-box","status":"publish","type":"post","link":"https:\/\/bosframework.com\/blog\/bos-supports-hipaa-conformance-out-of-the-box\/","title":{"rendered":"BOS Supports HIPAA Conformance Out-of-the-Box"},"content":{"rendered":"\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large is-resized\"><a href=\"https:\/\/i0.wp.com\/bosframework.com\/blog\/wp-content\/uploads\/2020\/10\/blog-8.jpg?ssl=1\" data-fancybox=\"\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/bosframework.com\/blog\/wp-content\/uploads\/2020\/10\/blog-8.jpg?resize=294%2C195&#038;ssl=1\" alt=\"BOS Supports HIPAA Conformance Out-of-the-Box\" class=\"wp-image-87\" width=\"294\" height=\"195\" srcset=\"https:\/\/i0.wp.com\/bosframework.com\/blog\/wp-content\/uploads\/2020\/10\/blog-8.jpg?resize=1024%2C683&amp;ssl=1 1024w, https:\/\/i0.wp.com\/bosframework.com\/blog\/wp-content\/uploads\/2020\/10\/blog-8.jpg?resize=300%2C200&amp;ssl=1 300w, https:\/\/i0.wp.com\/bosframework.com\/blog\/wp-content\/uploads\/2020\/10\/blog-8.jpg?resize=768%2C512&amp;ssl=1 768w, https:\/\/i0.wp.com\/bosframework.com\/blog\/wp-content\/uploads\/2020\/10\/blog-8.jpg?resize=1536%2C1024&amp;ssl=1 1536w, https:\/\/i0.wp.com\/bosframework.com\/blog\/wp-content\/uploads\/2020\/10\/blog-8.jpg?resize=2048%2C1366&amp;ssl=1 2048w\" sizes=\"auto, (max-width: 294px) 100vw, 294px\" \/><\/a><\/figure><\/div>\n\n\n\n<p>BOS knows the challenges of building and maintaining HIPAA compliant applications and understands how that cost and overhead grows exponentially for an enterprise managing multiple HIPAA compliant applications across multiple teams.<\/p>\n\n\n\n<p>That\u2019s why we built BOS to be a HIPAA conformant product framework that allows you and your teams to integrate multiple products on a common backend and ensure each new project is also integrated and HIPAA conformant from day one.<\/p>\n\n\n\n<p>Here are some of the HIPAA conformant features you get with BOS:<\/p>\n\n\n\n<h4 class=\"wp-block-heading\">Multi-tenancy with Data Isolation<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>All BOS APIs natively support physical separation of data per API per tenant<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">User Authorization and Access Control<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>OAuth based identity provider<\/li><li>Multi-factored authentication<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Authorization Monitoring<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>BOS uses AWS CloudTrail to enable governance, compliance, operational auditing, and risk auditing<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Data Backup<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>Daily scheduled backups of the database<\/li><li>A policy-based backup solution which enables the user to meet market specific regulatory requirements<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Remediation Plan<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>Logging and auditing of each activity<\/li><li>DevOps process which allows rollback of any change in the system<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Emergency Mode<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>Business continuity and disaster recovery plan<\/li><li>Active-Passive failover<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Automatic Logoff<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>Session management<\/li><li>Auto log-off setting on the resource<\/li><\/ul>\n\n\n\n<h4 class=\"wp-block-heading\">Data Encryption and Decryption<\/h4>\n\n\n\n<ul class=\"wp-block-list\"><li>AWS RDS-based data protection policy which restricts unauthorized access to the underlying storage<\/li><\/ul>\n","protected":false},"excerpt":{"rendered":"<p>BOS knows the challenges of building and maintaining HIPAA compliant applications and understands how that&hellip;<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4,8,2],"tags":[10,11,12,17],"class_list":["post-86","post","type-post","status-publish","format-standard","hentry","category-architecture","category-security","category-technology","tag-cloud-engineering","tag-cloud-engineering-platform","tag-cloud-security","tag-cybersecurity"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts\/86","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/comments?post=86"}],"version-history":[{"count":3,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts\/86\/revisions"}],"predecessor-version":[{"id":179,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/posts\/86\/revisions\/179"}],"wp:attachment":[{"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/media?parent=86"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/categories?post=86"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bosframework.com\/blog\/wp-json\/wp\/v2\/tags?post=86"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}