ENKI's US-EU Safe Harbor Cloud Hosting Services

US-EU Flag

Simplify Compliance While Reducing Operations Costs

ENKI’s Safe Harbor compliant hosting is designed from the ground up to give you the power, control, and flexibility to run your business the way your market in the EU or Switzerland requires, while giving you the option to free yourself of the need to build a fully staffed IT capability.

The foundation of ENKI’s Safe Harbor services are Virtual Private Datacenters that offer the security, flexibility, and control of a fully software-defined datacenter running in an enterprise-grade VMWare environment for premium compatibility and reliability.   By moving the definition of your datacenter into the software domain, you have the flexibility to create any network topology to connect any number of any type of servers, firewalls, switches, and encrypted storage to suit your needs and support your US-EU Safe Harbor compliance strategy.   Because your network and security components are in software, they can scale by many orders of magnitude, unlike competing services that lock you into inflexible hardware that can be overwhelmed by your growing needs, or even those of other clients hosted in the same cloud.

ENKI SecurVault

Bulletproof Cloud Data Security For Safe Harbor Covered Personal Data
  • Encrypts all storage, transit, backup, swap, even snapshots!
  • HITECH compliant
  • Automated key and storage management
  • Requires no changes to your software

Go Live Fast With Components and Services Designed for Safe Harbor Hosting

There's no need to re-invent the wheel with ENKI.  We offer standard, compliant networking, firewall, and encrypted storage components (including our industry leading SecurVault) that enable you to easily take advantage of the flexibility that our Virtual Private Data Centers offer.  And our security-customized virtual machine images get you started fast with a known-good configuration.  We also offer packages of services and automated security controls that support Safe Harbor compliance to get you live fast and meet your market needs, such as secure backup,VPN solutions, scanning, IDS, file integrity monitoring, and ITIL-compliance change management..  Please see our compliance roadmap below.


Easily Achieve and Maintain ComplianceSafeHarborFlow

If meeting the requirements for securely processing personal data that Safe Harbor imposes onto your information technology seems daunting, ENKI eases your task with two levels of assistance.

The foundation of ENKI’s services is our Safe Harbor-compliant base hosting service, PrimaCloud, which meets the Safe Harbor Security Rule's implied requirements for absolutely secure hosting of personally identifiable data, allowing you to design and manage your Virtual Private Datacenters as you choose while staying in compliance.

Additionally, you can partner with ENKI’s PrimaCare operations services plans to take advantage of our skilled and experienced IT team to implement the processes and controls within your VPDC that you deem necessary to complete your certification.   ENKI will work your team to provide the security plan and documentation you will need for self-certifcation or third-party certification, and then manage your VPDC and your application deployment to meet the agreed-upon controls and maintain the currency of your certification.   Naturally, we will always be available to assist you with an audit.

Because our hosting can be made absolutely secure such that ENKI has no access to your personally-identifiable customer data, an Onward Transfer Agreement is not necessary; however we will gladly sign one if you require, providing that ENKI is empowered to maintain the security of your hosting.

To schedule a free consultation or request a proposal for Safe Harbor compliant cloud hosting personalized to meet your needs, please contact us.

About Safe Harbor

The US-EU Safe Harbor agreement consists of a series of 7 principles that have been agreed to by both parties, governing data security and privacy for EU citizens:

  • Notice - Individuals must be informed that their data is being collected and about how it will be used.
  • Choice - Individuals must have the ability to opt out of the collection and forward transfer of the data to third parties.
  • Onward Transfer - Transfers of data to third parties may only occur to other organizations that follow adequate data protection principles.
  • Security - Reasonable efforts must be made to prevent loss of collected information.
  • Data Integrity - Data must be relevant and reliable for the purpose it was collected for.
  • Access - Individuals must be able to access information held about them, and correct or delete it if it is inaccurate.
  • Enforcement - There must be effective means of enforcing these rules.

These agreements are in the form of letters and FAQs between the US Department of Commerce and EU data security officials. They do not include any specific requirements or guidelines for steps that US companies must take in their application, hosting or IT processes. However, they are quite clear about the stringent enforcement and consequences for companies that do not take appropriate steps to ensure data privacy and security. Because of the costs and possible business consequences of not providing adequate security and privacy, it is clear that comprehensive best practices for ensuring data security and privacy must be followed both in the application design and administration, and in the hosting and IT processes.   Additionally, any safe harbor compliance advertised by a hosting provider does not in any way guarantee or facilitate safe harbor compliance for your business: each company must earn its own compliance through the documented self-certification or third party certification processes.

A Roadmap to Compliance

The table below describes the basic requirements of Safe Harbor certification (based on the US Department of Commerce US-EU Safe Harbor website), with your and our responsibilities as well as solutions that ENKI provides to help you achieve compliance.  If you engage ENKI's PrimaCare, ENKI can take responsibility for many of the Safe Harbor security requirements within your virtual environment.  Even if you do not choose PrimaCare, ENKI's services at the physical layer are fully Safe Harbor compliant.

Compliance Domain Responsible Entity Administrative Safeguards Physical Safeguards Technical Safeguards
Application Software and Organizational Processes Safe Harbor Compliant Entity (Your Company) As Per Your Safe Harbor Compliance Plan  -  -
Virtual Infrastructure Addressable
With Your Compliance Plan

Security Awareness & Training

  • Login Monitoring
  • Protection from Malicious Software

Contingency Plan

  • Data Backup
  • Business Continuance

Onward Transfer Agreement

ENKI Audit Controls

Device & Media Controls

  • Data Backup & Storage

Access Control

  • Encryption
Physical Infrastructure ENKI

Onward Transfer Agreement


Workforce Security

Facility Access Control


Device & Media Controls

Access Control
  • Encryption
Transmission Security
  • VPN Services
  • Encryption
ENKI Safe Harbor Compliance Services ENKI
  • Two-Factor Authentication
  • Pre-Secured VM Images
  • Preconfigured Firewall Images
  • ITIL-Compliant Change Management
  • Staff background checks
  • Veeam Secure Backup
  • ENKI SecurVault VM Encryption
  • ENKI EasyVPN
  • Web Application Firewall
  • Security Scanning
  • Intrusion Detection
  • File Change Monitoring
  • VMWare / VCloud Director
  • Hardware VLANs

How to Buy

vmw 153X72