With LogDNA, your data is fully secured in transit and at rest. LogDNA offers HIPAA-compliant logging as well as SOC 2, HITECH, and PCI-DSS compliance. For EU/Swiss customers, LogDNA is both GDPR-compliant and Privacy Shield certified.
LogDNA currently uses third party Subprocessors to provide infrastructure services, and to help us provide customer support, email notifications. Prior to engaging any third party Subprocessor, LogDNA performs diligence to evaluate their privacy, security and confidentiality practices.
The Health Insurance Portability and Accountability Act of 1996 Title II (HIPAA) addresses safeguards to secure electronically protected health information (ePHI), including log management and audit requirements. LogDNA is a robust logging platform that quickly and securely collects and centralizes your log data and provides easy to use search, analysis, and alerting features. Not only are our systems and processes fully compliant with HIPAA, we are audited for HIPAA and HITECH compliance every year by a third-party qualified security assessor. In addition, for HIPAA plan customers, LogDNA will sign a Business AssociateAgreement (BAA) and take on the associated legal liability of handling your sensitive data.
HIPAA requires a minimum of 6 years of retention of audit log data. To ensure compliance, LogDNA provides a secure and convenient archiving service for logs older than the retention period of your LogDNA plan.
In response to valuable feedback from our community, LogDNA is SOC 2 compliant.
To comply with EU data protection requirements, LogDNA is Privacy Shield certified. This enacts protections for the personal data of EU individuals when it is transferred to the United States.
LogDNA is committed to ensuring the highest level of privacy protection. As a General Data Protection Regulation (GDPR) compliant organization, LogDNA has standardized user data privacy across the EU nations, regardless of where the organizations themselves are located.
LogDNA has been audited by an independent PCI Qualified Security Assessor (QSA) and is certified as a PCI Level 1 Service Provider. This is the most stringent level of certification available in the payments industry.