Sarbanes-Oxley, FINRA, HIPAA, and other regulations mandate safeguards surrounding the backup, privacy, and availability of sensitive information and certain records.  Obar4u goes to extreme lengths to be commercial-grade, offering all the access and security controls regulated industries desire.  To certify this claim, Obar4u annually engages a third party audit, known as a SAS 70 Type II, where an independent, accredited firm, conducts an in-depth analysis over a period of time to test the stated controls Obar4u has in place for data protections, redundancies, security, infrastructure, and employment policies.

Obar4u Compliance

When you choose Obar4u, the following features fulfill widespread regulatory and governance demands for data backup and recovery:

• Your data is always encrypted – throughout transmission, storage, and recovery processes.
• Data is not easily subject to human touch or tampering as is the case with tapes.
• Data is stored on redundant and reliable RAID disk arrays from industry leading vendors.
• Data is stored in geographically diverse tier 4 datacenters located 1,500 miles apart.
• You maintain full control over retention requirements and access controls.
• Automation ensures disciplined and auditable backup and offsite storage.
• Process integrity checks confirm storage and post logs for audit and email notification.

Sarbanes-Oxley

Obar4u Backup service fulfills the requirements of the Sarbanes-Oxley Act (SOX) as they relate to record retention, records production, internal controls, and record alteration and destruction.
Adhering to stringent security, access, process, and redundancy safeguards, Obar4u employs aggressive controls that are backed by a SAS 70(Type II) certification, an independent audit by an accredited firm that evaluates stated safeguards and controls over a six month period.
Each of Obar4u’s secure, world-class datacenters is equipped with redundant power and telecommunication supplies, climate controls, and fire suppression systems. Industry-leading 256-bit AES encryption protects data during backups, storage, and restores transfers. Data is never in a deciphered state until decrypted by clients-who have the only key.

SOX SECTIONS

RECORD RETENTION

SOX Section 103(a)(2)(A)(i)

Prepare and maintain, for a period of not less than 7 years, audit work papers and other information related to any audit report, in sufficient detail to support the conclusions reached in such report.

Obar4u Solution

The Ideal Long-Term Storage Solution
Obar4u’s Backup service preserves the backup copies and versions of regulated electronic documents according to the retention schedule you require. Settings are highly customizable down to file level.

PRODUCTIONS OF RECORDS

SOX Section 105(b)(2)(B)
Require the production of audit work papers and any other document or information in the possession of a registered public accounting firm or any associated person thereof , wherever domiciled, that the Board considers relevant or material to the investigation and may inspect the books and records of such firm or associated person to verify the accuracy of any documents or information supplied.

Quick, Easy, & Reliable Data Recovery
Obar4u’s Backup provides reliable recoverability of electronic documents from secure offsite vaults, even years after they were backed-up. Controlled by policies set by clients, changes to records can also be captured and available for subsequent restore.


FINRA
In 2007 The Financial Industry Regulatory Authority (FINRA) was formed by consolidating redundant rules under NASD and NYSE.  Under NASD 3510, members are required to maintain business continuity and contingency plans to satisfy obligations to clients in the event of an emergency or outage. A key component to any business continuity plan, the Obar4u Backup service fulfills the requirements of FINRA as they relate to data backup, offsite storage, and contingency planning.
As a highly regulated industry handling sensitive personal information, the financial services field inherently requires unparalleled precautions and fail-safe solutions to ensure secure backup and speedy restores in the event of disaster, audit or litigation.

Addressing issues causing large-scale inaccessibility to business systems and data, such as 9/11 or the Northeast blackout, the New York Stock Exchange and the
National Association of Securities Dealers drafted rules NYSE Rule 446 and NASD 3510. Now consolidated under The Financial Regulatory Authority (FINRA), NASD 3510 requires members to create, test, and update business continuity plans to satisfy
obligations to clients in the event of an emergency or outage. Obar4u Backup service, helps members fulfill these requirements with rapid deployment and expert support.
While FINRA specifically requires business continuity plans to include backup and recovery for books and records, any good business continuity plan includes secure data backup, offsite storage with instant access, replication of data to geographically diverse datacenters, and the assurance of reliable, speedy recovery.  

SECURE, OFFSITE BACKUP & RECOVERY TO ENSURE COMPLIANCE
Ideal for brokers, securities firms, investment advisors, and other financial service firms, Obar4u provides secure offsite storage and high-availability service options for business continuity and seamless disaster recovery.
The Obar4u Backup service features built-in-access controls, audit logs, and an infrastructure that ensures compliance with FINRA regulations. Whether data requires retentions of seven days or seven years, all data processing documented and stamped with both time and date. Detailed reporting provides clear insight with an audit trail of all backup activity.
With end-to-end encryption and immediate access to backed-up-data, the Obar4u service ensures high levels of security and availability for business-critical data. In addition data is replicated over 1,500 miles away from the primary datacenter to another world-class facility to mitigate regional disasters.

CERTIFIED CONTROLS & SECURE DATACENTERS
Adhering to stringent process, redundancy, access, and security safeguards, Obar4u employs aggressive controls that are backed by a SAS 70 (Type II)              certification, a comprehensive audit that evaluates safeguards and controls over a six month period.
Each of Obar4u’s secure, world-class datacenters is equipped with redundant power and telecommunication supplies, climate controls, and fire suppression systems. Industry-leading 256-bit AES encryption protects data during backups, storage, and restores transfers. Data is never in a deciphered state until decrypted by clients – who have the only key.


HIPAA

Obar4u backup service fulfills the requirements of the Health Information Portability & Accountability Act (HIPAA), including data integrity, authentication, contingency planning, and access and audit controls as they relate to electronic Protected Health Information.
Adhering to stringent security, access, process, and redundancy safeguards, Obar4u employs aggressive controls that are backed by a SAS 70(Type II) certification. Obar4u Backup features built-in access controls, audit logs, and an infrastructure that ensures compliance with HIPAA data protection regulations.
Each of Obar4u’s secure, world-class datacenters is equipped with redundant power and telecommunication supplies, climate controls, and fire suppression systems. Industry-leading 256-bit AES encryption protects data during backups, storage, and restores transfers. Data is never in a deciphered state until decrypted by clients- who have the only key.

HIPAA SECTIONS

CONTIGENCY PLAN

HIPAA Section 164.308(a)(7)(i)
Standard: Contingency plan. Establish (and implant as needed) policies and procedures for responding to an emergency or other occurrence (for example, fire, vandalism, system failure, and natural disaster) that damage systems that contain electronic protected health information.
HIPAA Section 164.308(a)(7)(ii)
Implementation specifications:
(A) Data backup plan (Required). Establish and implement procedures to create and maintain retrievable exact copies of electronic protected health information.
(B) Disaster recovery plan (Required). Establish (and implement as needed) procedures to restore any loss of data.

Obar4u SOLUTION

Obar4u Backup provides comprehensive backup and offsite protection of internal or remote servers. In the event of an emergency, disaster, or other outage, exact, copies of your data are recoverable quickly and easily via a web-based central administrator or mobile vault for larger volumes.
In addition, Obar4u offers data replication to another world-class datacenter located over 1,500 miles away from the primary facility. Ensuring expedient recovery, Obar4u Backup solutions simplifies the process of disaster recovery planning as an all-in-one, backup and offside solution..