Compliance

When choosing an IT partner, it is important to understand what certifications and security processes they have in place. At LightEdge, we are continuously working on staying up to date on the most vital compliance regulations in our industry. As your colocation and cloud service partner, LightEdge is committed to assist with your compliance needs. Many of our services meet the rigorous standards of both HIPAA and PCI-DSS. We work directly with our customers throughout their audits by providing evidence to demonstrate compliance with controls that fall within LightEdge managed services.

ISO 20000 Certified by schellman
ISO 20000-1 was developed to provide best practice guidance for ITIL and other service management frameworks within service organizations. Becoming certified demonstrates LightEdge’s commitment to continual improvement. ISO 20000-1 includes control processes such as change, capacity, and incident management.

ISO 27001 Certified by schellman

ISO 27001
ISO 27001 is an internationally recognized Information Security Management framework. Certification requires a mature risk assessment and treatment program, effective security awareness training, continual improvement initiatives, and a comprehensive set of security controls.

AICPA Service Organizations Control Reports

The American Institute of Certified Public Accountants (AICPA) developed the System and Organization Controls (SOC) suite of reports to assess and address risks associated with outsourced processes. LightEdge has successfully completed SOC 1 Type 2, SOC 2 Type 2 and SOC 3 examinations.

pci DSS Certified

PCI DSS v3.2
The Payment Card Industry Data Security Standard (PCI-DSS) is an information security standard for companies processing and storing credit cards. LightEdge’s completion of ROC (PCI) validates the company as a PCI-DSS Level 1 Service Provider, assuring clients that LightEdge data center facilities meet the prescriptive PCI physical security requirements.
HIPAA Compliant
HIPAA/HITECH Compliance Report
The Health Insurance Portability and Accountability Act (HIPAA) establishes requirements for the use, disclosure, and safeguarding of protected health information (PHI). While there is no certification for HIPAA, LightEdge has successfully undergone a third-party examination against the HIPAA Security Rule and has been issued a Type 1 AT 101 letter of attestation confirming our alignment with HIPAA safeguards.