locked
Is Azure App Service Covered HIPAA for the Transmitting data's from Azure App Server to Azure SQL Server RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    I'm developing a HIPAA compliant Product 

    I know that most of the Azure Services Covered under HIPAA Std( https://gallery.technet.microsoft.com/Azure-HIPAAHITECH-Act-1d27efb0 )

    Also most of the data's (PHI) that stored in Azure Services (Under the BAA Scope)

    Across the UI and App Server ( i can Protect the data by using SSL certificates -https)

    Now I had a doubt that between the App Server and Azure SQL Server the PHI data's can be transmitted Securely ?

    Is Azure Provide these Assurance ?


    

    Thanks in Advance

    JAYENDRAN

    Tuesday, July 11, 2017 3:43 PM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote

    Azure SQL Database (and SQL Server starting with 2016) has a feature called Always Encrypted that is designed to protect sensitive data. Data remains encrypted at all times - in transit, in memory, on disk and even during query processing.

    -----------------------------------------------------------------------------------------------------

    Do click on "Mark as Answer" on the post that helps you, this can be beneficial to other community members.

    Wednesday, July 12, 2017 10:08 AM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote

    Both Azure Web Apps and Azure SQL Database are HIPAA compliant. The complete list of in-scope services is listed at http://azure.microsoft.com/en-us/support/trust-center/services/. This is the place to look for the most up to date information about Azure compliance.

    -----------------------------------------------------------------------------------------------------

    Do click on "Mark as Answer" on the post that helps you, this can be beneficial to other community members.

    • Proposed as answer by Md Shihab Wednesday, July 12, 2017 7:03 AM
    Wednesday, July 12, 2017 7:03 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    You are right. As i already mentioned in my Question both Azure Web Apps and Azure SQL Database are HIPAA Compliant (that already known). 

    HIPAA Compliance in the Sense of Storing PHI data's both Azure Web Apps and Azure SQL databsae were take care.

    I Explicitly wants to know during the transmission between Azure Web Apps Server and Azure SQL DB is covered under HIPAA (transit/transmission of data's NOT DATA'S THAT STORED IN REST)

    Thanks

    JAYENDRAN

    Wednesday, July 12, 2017 7:24 AM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Azure SQL Database (and SQL Server starting with 2016) has a feature called Always Encrypted that is designed to protect sensitive data. Data remains encrypted at all times - in transit, in memory, on disk and even during query processing.

    -----------------------------------------------------------------------------------------------------

    Do click on "Mark as Answer" on the post that helps you, this can be beneficial to other community members.

    Wednesday, July 12, 2017 10:08 AM