FAQ: Third-Party Maintenance in the Healthcare Industry
Do you have questions about using third-party maintenance in your data center? We’ve got answers for you.
Frequently Asked Questions
- Will we still be HIPAA-compliant if we use a third-party data center maintenance provider?
- How do you ensure healthcare data security?
- Will you sign a BAA?
- How do we maintain security on defective hard drives?
- Do we need the latest firmware update to be a HIPAA-compliant data center?
- We have several systems that we need to keep long-term—can you keep them running?
- Can you meet the strict SLAs necessary for the healthcare industry?
- Are your engineers qualified to handle our mission-critical equipment?
- We just underwent a big merger—can you help with that?
- We have multiple locations both inside and outside of the United States. Can you still support us?
Q: Will we still be HIPAA-compliant if we use a third-party data center maintenance provider?
A: YES. While it is the responsibility of the covered entity (hospital/healthcare organization) to understand, acknowledge, and meet The Health Insurance Portability and Accountability Act (HIPAA) regulations, Service Express is committed to following all guidelines our customers have in place to meet HIPAA regulations.
Q: How do you ensure healthcare data security?
A: Service Express does not access any secure data when providing support. We never remotely or locally access a server without customer knowledge and permission. In the event we need a remote access point, we set up a one-time remote session.
Service Express will not compromise any type of securities that you have in place to ensure data is secure. We comply with any and all processes to protect secure data, while still allowing for access to repair your equipment.
Q: Will you sign a BAA?
A: We sign both Business Associate Agreements (BAAs) and Non-Disclosure Agreements (NDAs) as a compliance checkbox for our customers. Protecting healthcare data is the rule, not the exception. Even though we are not accessing any Protected Health Information (PHI), we always want to help our healthcare customers meet HIPAA rules that could apply.
Q: How do we maintain security on defective hard drives?
A: We offer drive retention to customers who would prefer to keep chain of custody on failed drives in-house for HIPAA compliance. Most OEMs will charge for Defective Media Retention (DMR) or Comprehensive Defective Media Retention (CDMR), but we allow customers to retain drives and other magnetic media at no charge.
If it becomes necessary to take any drives or defective media off-site, Service Express protects your confidential information by properly disposing of the drives using a data destruction process that mirrors the government data destruction policy.
Q: Do we need the latest firmware update to be a HIPAA-compliant data center?
A: Not necessarily. Is your data secure in the current level of firmware your system is operating with? Service Express advises our customers which firmware updates may affect the security of their data and recommend they obtain such updates (which OEMs may provide to equipment owners at no cost). We help our customers through the process of applying the firmware updates to their systems and equipment to ensure data center security.
Q: We have several systems that we need to keep long term—can you keep them running?
A: Our post-warranty coverage includes End-of-Life (EOL) and End-of-Service-Life (EOSL) equipment—helping you maximize the ROI of your data center assets by extending the customary OEM equipment life cycle for years.
When it makes sense to keep your equipment longer due to budgetary constraints, archived medical records or legacy app reasons, you can depend on Service Express’ 25+ years of experience for support and uptime.
Q: Can you meet the strict SLAs necessary for the healthcare industry?
A: We meet your coverage needs with a variety of Service Level Agreements (SLAs). You can choose 24×7, Same Business Day, Next Business Day or a customized solution. Our on-site response time in meeting these SLAs is an industry-leading 99%.
Beyond meeting SLA terms, our support is structured to ensure the best experience for the IT professionals we serve. Advantages include:
Our ServiceEdge™ sets the standard for what your service can and should be, with a 24/7/365 in-house customer support team and engineer callback within 30 minutes of opening a service ticket (average time 10 minutes) for fast resolution.
PartsEdge™ is our “Right Parts at the Right Time” process to supporting your data center equipment. Not only do we have quality parts, we use our proprietary algorithm to make sure the parts needed are in local inventory before a failure occurs. Eliminating parts delays contributes to quicker service and a 94% first-trip repair success rate.
Q: Are your engineers qualified to handle our mission-critical equipment?
A: Definitely! Our engineers have the experience and the resources to provide multi-vendor support for your server, storage and network equipment. This extensive data center expertise means you can rely on a consistent level of support, even if an issue affects multiple pieces of equipment.
To provide outstanding support, every Service Express engineer participates in continuous, hands-on learning. Our award-winning Aces Development training program aligns engineer development with actual call activity in the field, as well as incorporating customer needs, engineer skill set and historical service data.
Should an unusual or more complex problem arise, immediate engineer support is available 24/7 from our Field Technical Operations (FTO) support team. This group of technical operations experts are ready with answers and next steps to resolve issues and maximize uptime for your mission-critical equipment.
Q: We just underwent a big merger—can you help with that?
A: Absolutely! Definitive Healthcare’s survey of healthcare leaders puts industry consolidation as the most important trend of 2019, with 803 tracked mergers and acquisitions along with 858 affiliation and partnership announcements last year. With this trend in consolidation activity, IT teams can encounter major challenges with asset management, including the merging and deduping of data center assets.
For a comprehensive report of what assets are in your data center(s), Service Express provides full inventory audits, including models and serial numbers. In addition, you can review what is covered under warranty with the OEM and see when that coverage expires with our warranty tracking. These asset management insights are accessible in our customer portal, ExpressConnect™.
To help with your surplus or retired equipment needs, Service Express offers decommissioning services and asset recovery. To ensure security, any equipment taken offsite is processed according to DoD and NIST standards in our Enterprise Production Lab.
Q: We have multiple locations both inside and outside of the United States. Can you still support us?
Multiple locations in healthcare are not uncommon, and while your primary and secondary engineer will vary by location, there will be one account manager, contract support specialist, and hardware sales associate to support all your locations.
Data center uptime is critical to an organization’s ability to operate and be successful.
24/7 uptime takes on a deeper significance for healthcare data centers
Hospital data centers are central to patient care
With the increased reliance of health care teams on electronic records and 24/7 accessibility, data center management and performance is crucial
We help over 350 hospitals, medical centers, and other healthcare organizations
provide 24/7 care and service for their clients with mission-critical data center support
Utilizing our third-party maintenance solutions for data center support saves you 30-70% on your current maintenance costs; you can apply the savings toward patient care technology, staffing and strategic projects. By choosing Service Express as your data center maintenance provider, you can improve your quality of support and maximize your uptime without compromising your HIPAA compliance.
Download a copy of this FAQ
to help you evaluate and find an excellent third-party maintenance provider for your HIPAA-compliant IT environments.
Interested in learning more about Service Express?