New HIPAA and PCI-DSS Compliance Attestations for Splunk Cloud

By Splunk

Customers who manage systems in private clouds understand the challenge of managing to compliance initiatives. New legal and regulatory initiatives need to be incorporated and broad guidelines must be interpreted into a prescriptive working plan. Splunk Cloud now provides such an option for customers who require compliance with HIPAA or PCI initiatives.

Health Insurance Portability and Accountability Act (HIPAA) – HIPAA is a set of national rules for the privacy and security of individuals’ health information called Protected Health Information (PHI) and establishes standards for accessing, storing and transmitting medical data.

Splunk Cloud has been third-party audited and assessed to meet the data security requirements of the HIPAA statute and maintains a security profile required by law. Customers can request a ‘HIPAA Compliance’ report and/or a Business Associate Agreement (BAA) for their own compliance reporting.

Payment Card Industry Data Security Standard (PCI-DSS) – The PCI-DSS is a security standard set by the credit card industry to ensure that organizations that accept, process, store, or transmit credit card information maintain a secure environment. It applies to “Merchants"—entities that accept payment cards from American Express, Discover, JCB, Mastercard or Visa—and requires them to use PCI-DSS-compliant third-party service providers when processing cardholder data.

Splunk Cloud’s PCI attestation means that Splunk Cloud meets the applicable security requirements of PCI-DSS, can provide an ‘Attestation of Compliance’ report, and can serve as a trusted PCI compliance service provider for our Merchant customers.

Read more about our compliance options or contact an account executive to discuss incorporating compliance capabilities into your Splunk environment.

Follow all the conversations coming out of #splunkconf18!

Follow @splunk

----------------------------------------------------
Thanks!
Sundeep Gupta

Splunk

The world’s leading organizations trust Splunk to help keep their digital systems secure and reliable. Our software solutions and services help to prevent major issues, absorb shocks and accelerate transformation. Learn what Splunk does and why customers choose Splunk.

.conf & .conf Go 1 Min Read

The Splunkie Awards Open Nominations for 2024

The Splunkie Awards are back and more exciting than ever because for the first time this year, we’re bringing the Global Partner Awards to the Splunkies at .conf24.

.conf & .conf Go 3 Min Read

Announcing Native OpenTelemetry Support in Splunk APM

With a set of capabilities in OpenTelemetry and just-announced native Splunk support, we're ready to go all-in while we continue accelerating the growth and adoption of OpenTelemetry beyond the commitments we made last year.

.conf & .conf Go 3 Min Read

How Speaking at .conf Went From a Dream to Reality

Learn the ins and outs of being a .conf21 speaker from .conf veteran, Burch! Burch walks through the do's and don'ts of submitting to Splunk's .conf call for speakers, and will help guide you through best practices for what to do after you've been accepted.

About Splunk

The world’s leading organizations rely on Splunk, a Cisco company, to continuously strengthen digital resilience with our unified security and observability platform, powered by industry-leading AI.

Our customers trust Splunk’s award-winning security and observability solutions to secure and improve the reliability of their complex digital environments, at any scale.