About Us  |  Our Facilities  |  CAPS  |  XyberNET  |  Resource Center  |  Partners  |  Contact Us  
Blue Hill Data Services Why Blue Hill Data Services?  
Blue Hill is proud to have achieved the following certifications, which demonstrate our commitment to our clients by providing the highest levels of physical and logical security controls at our data centers and in our systems and network services. Our clients appreciate that by maintaining our compliance standards, we help them achieve theirs.
By successfully completing the SSAE 16 Type 2 SOC 1 examination, Blue Hill gained assurance for its customers that the controls it has put in place at its hosted data center facility in Pearl River, NY, meet the standards required for service organizations. The examination validated the fact that the companyís policies and procedures comply with the certificationís mandated internal controls. The SSAE 16 Type 2 SOC 1 examination included a formal opinion from the independent CPA monitoring Blue Hillís Data Center Outsourcing Services for its Pearl River, NY, on the design and operating effectiveness of the data center controls.
The controls tested include, but are not limited to:
  • Physical and Logical Security
  • Operations and Disaster Recovery
  • Infrastructure and Environmentals
  • Systems and Network Services
  • Client Services and Project Management
  • Organization and Administration: Business, Contractual, Human Resources and Financial Policies
In addition, completing this annual examination demonstrates compliance with particular legal regulations that are required by some customers. Many organizations, such as those that are publicly traded in the healthcare, insurance or financial services industry, have a legal requirement to perform a SSAE 16 Type 2 SOC 1 examination from their service provider. Blue Hillís completion of Type 2 SOC 1 examination allows it to support these customers, validating that its data center operations maintain customer required controls.
Learn more about SSAE 16 Type 2 SOC 1
Blue Hill Data Services is PCI-DSS compliant, so our policies, procedures, and technical systems that store, process and/or transmit cardholder data have satisfactorily met the requirements of the Payment Card Industry Data Security Standard (PCI DSS).
The PCI-DSS certification was developed to encourage and enhance the security of cardholder information and to facilitate the broad adoption of consistent data security measures globally. This designation provides a baseline of technical and operational requirements designed to protect cardholder data. PCI-DSS applies to all entities that store, process or transmit cardholder data and comprises a minimum set of requirements for protecting that. PCI-DSS certification may be enhanced by additional controls and practices to further mitigate risks.
TrustwaveLearn more about PCI-DSS
For additional information on Blue Hill Data Servicesô, or its recent certifications, contact Rosary De Filippis at RDeFilippis@BlueHillData.com, or at 845-620-0400.
SOC 2 Compliant
SASE 18 SOC 1 Type 2
SOC 1 Type 2 Compliant
PCI-DSS Compliant for
Network Services
TRUSTe Privacy Certification
Privacy Shield Framework
EU-U.S. and Swiss-U.S
Privacy Shield Framwork
PCI-DSS Compliant for
Data Center Security
HIPAA Compliance
CJIS Compliance
IRS Compliance
Print Send Top
©Blue Hill Data Services®, a Computer Technologies U.S.A., LLC company
P.O. Box 1614, Pearl River, New York 10965 | p. 845.620.0400 |
Privacy Policy