ClearDATA: Creating a Culture of Compliance

Pharma Tech Outlook: Pharma Tech Magazine

ClearDATA: Creating a Culture of Compliance

Imagine you are a senior healthcare executive and one morning receive the call that your organization’s protected health information (PHI) may have been exposed. How can you be sure if PHI was or wasn’t exposed? Did you have safeguards in place to identify, limit, and resolve potential issues? Did you interpret the regulations correctly? Can you prove it? After an investigation is conducted, it appears that a wide range of PHI was exposed to hackers, violating the trust that patients placed in you, costing the company a considerable sum of money and untold losses in brand value. The key to avoiding such data breaches is to understand security best practices and the regulations; design and implement environments to support security, privacy, and compliance; and regularly perform security, privacy, and compliance risk assessments that can help healthcare providers uncover potential weaknesses in their policies, processes, and systems. ClearDATA helps healthcare companies perform these activities and protect sensitive data.

ClearDATA is the leading healthcare-exclusive, multi-cloud service provider focused on security, privacy, and compliance within the public cloud, not just within the U.S. but around the world. Their HITRUST-certified safeguards protect the sensitive data of providers, pharmaceutical, life sciences, payers and healthcare SaaS and ISV product companies, and powers their customers’ critical applications across major public cloud platforms such as AWS, Microsoft Azure, and Google Cloud.

The company has a data-driven approach toward designing its products to ensure that data is safeguarded throughout its lifecycle. Illustrating the approach with an example, Chris Bowen, founder and chief privacy and security officer of ClearDATA says, “When we leverage Google Cloud platform, for example, we leverage built-in features such as identity and access management, encryption, and logging within the environment, and ensure these features are automated in a scalable manner so that our customers can focus on innovation.”
Recently, the company joined hands with Google and the partnership will combine Google Cloud’s innovation with ClearDATA’s healthcare compliance expertise to speed up advancements and scale healthcare IT infrastructure.

ClearDATA helps customers avoid misconfigurations, enable improved security, and comply with applicable regulatory requirements, such as HIPAA, while staying within privacy best practices aligned with the General Data Protection Rules (GDPR). These guardrails are delivered by a series of automated safeguards and visualized within a 24/7 compliance dashboard that provides visibility into the compliance posture of their environment, from the time of deployment throughout the lifecycle of their environment.

Understanding the healthcare-specific workflows and critical business issues that the organizations are wrestling with and understanding their business objective and compliance requirements, ClearDATA tailors solutions for customers in the public cloud. ClearDATA engages with customers to help them identify and define applicable risks and regulations and perform security or compliance risk assessments.

The chief strategy officer of ClearDATA, Scott Whyte, describes the company’s engagement with one of its customers: a drug manufacturer that wanted to offer the best solutions to hospitals to monitor anti-microbial therapy resistance. The solution needed the highest levels of security possible in order to meet the security and compliance at hospitals. ClearDATA helped them with the cloud-based security, privacy, and compliance design, allowing the drug manufacturer to be trusted to serve a wide range of customers.

To be able to help more such customers, ClearDATA intends to continue enhancing its automation solutions and intellectual property. “Our roadmap leads to creating environments in which our customers can operate and innovate as freely as possible to solve tomorrow’s healthcare challenges and improve patient lives,” concludes Jim Gibson, VP, growth and innovation, ClearDATA.
Share this Article:
Top 10 Pharmaceutical Compliance Solution Companies - 2019


Austin, TX

Darin Brannan, President, CEO & Co-Founder

ClearDATA was conceived and designed from the ground up to serve the mission-critical system needs and regulatory requirements of healthcare organizations. Healthcare professionals across the globe trust the ClearDATA HITRUST-certified cloud to safeguard their sensitive data and power their critical applications available across the major public cloud platforms. ClearDATA’s innovative platform of solutions and services protects customers from data privacy risks, improves their data management, and scales their healthcare IT infrastructure, enabling the industry to focus on making healthcare better by improving healthcare delivery. The founders of the company drew upon their own experience to create the most robust, secure, reliable, and HIPAA-compliant cloud computing solution in the industry

ClearDATA News

ClearDATA Automates Compliance on Google Cloud with ClearDATA Comply„¢ SaaS Service

AUSTIN, Texas - ClearDATA®, the leader in healthcare public cloud security, compliance and privacy, today expanded their ClearDATA Comply„¢ Software as a Service (SaaS) compliance management product to automate compliance risk mitigation and remediation for healthcare applications built on Google Cloud Platform (GCP). This expansion of Comply for multi-cloud further facilitates continued rapid innovation and digital transformation for all pharmaceutical, payer, provider and healthcare IT applications and therefore immediately supports the rapid public health response of the widespread coronavirus pandemic.

Healthcare organizations across the country are increasingly depending on the public cloud to address the growing demand for telehealth solutions, identify new solutions for population health analytics, scale lab testing capabilities and accelerate development of clinical drugs. By making ClearDATA Comply available across all three public clouds, ClearDATA empowers healthcare organizations to better maintain compliance and secure patient data with real-time compliance checks and automated remediation.

ClearDATA utilizes Complys automated safeguards to uphold the healthcare requirements of security and compliance on the cloud, ensuring our healthcare partners implement and maintain the highest standards of protective measures before, during and after the pandemic, said Chris Bowen, Founder and Chief Privacy & Security Officer at ClearDATA. During the pandemic, HIPAA proactively adjusted regulations in order to create the necessary flexibility for providers to address patients immediate needs in an evolving environment that allowed hospitals to share infection rates and treatment data in such a way as to control the virus spread. While this is the right thing to do in the face of such a crisis, the healthcare industry should remain vigilant “ cybercriminals are opportunists by nature and this crisis does present them with an expanded opportunity.

ClearDATAs deep expertise in both public cloud and healthcare compliance enabled it to meticulously engineer its flagship SaaS product to detect and immediately remediate compliance deviations as well as provide visual reporting of the environments compliance status that can be used as proof to auditors. As of today, Comply automatically configures over 50 controls across 19 of the most commonly used GCP services that process, transmit or store sensitive patient data (PHI/PII) including Google Kubernetes Engine (GKE) and Google Compute Engine (GCE). This gives GCP healthcare customers confidence to further adopt AI and machine learning technology to innovate within their cloud environment.

Comply software may also be packaged with ClearDATAs optional managed services to drive a security and compliance approach from the beginning, advising and implementing the appropriate networking and access management strategies. The combined solution allows ClearDATA to form strategic partnerships with organizations, building proactive security and compliance practices as their cloud journey extends and scales. ClearDATA managed services are coupled with a comprehensive and customizable Business Associates Agreement (BAA) which extends beyond any BAA with the public cloud and includes additional layers of protection such as indemnification.

As a Premier Partner with GCP, ClearDATAs healthcare compliance expertise strategically guides clients through the digital transformation process, empowering them to leverage artificial intelligence, machine learning and data analytics on the Google Cloud. ClearDATA has been closely collaborating with Google for years to support its sensitive data workloads with plans to continually integrate new HIPAA-eligible GCP services with Comply - helping healthcare organizations reduce operational costs, gain better insights into their patient data and develop next-gen solutions to benefit providers and patients.

ClearDATA launched the Comply multi-cloud solution in December 2019 and is now available on all major public clouds including Amazon Web Services (AWS) and Microsoft Azure. With Complys expansion into GCP, healthcare organizations can now automate compliance on the public cloud of their choosing with a multi-cloud view of compliance within a single pane of glass.