Compliance

MyGreenPC remote access service is compliant with major Governmental and Industry Standards such as HIPAA, PCI, and GDPR.

HIPAA Compliance

Every healthcare related business in the United States is required to comply with Federal standards that govern the protection of sensitive and private patient information. HIPAA, in addition to safeguarding worker health insurance coverage, establishes guidelines for maintaining the confidentiality, integrity, and accessibility of electronic health information. It is important to note that MyGreenPC does not handle, store, or have any ability to access users’ computer data, including patient data or medical records. As a result, MyGreenPC should not be considered a business associate. When used appropriately, the MyGreenPC MSP and Enterprise solutions may aid organizations in adhering to HIPAA regulations for the privacy and security of remote access to healthcare information. These solutions can be integrated into a larger system to support overall HIPAA compliance Notable points to consider include:

  • No Storage of Data

    MyGreenPC does not store or record any activity during remote access sessions

  • Encryption

    All the Data between your device (Client) and remote device (Host) for entire duration of a session, is fully End-to-End encrypted

  • Credentials & SSO

    MyGreenPC credentials are stored using latest Password Hashing algorithms. Accounts can further be protected by integrating authentication with your chosen Identity Provider

  • Session Logging

    Session metadata e.g. user, target device, start time, end time, ip address is logged for future auditing

  • Audit Events

    All user activity on MyGreenPC Dashboard is recorded in an Audit log for future reference

PCI Compliance

PCI DSS is the global security standard for all entities that store, process, or transmit cardholder data and/or sensitive authentication data. PCI DSS sets a baseline level of protection for consumers and helps reduce fraud and data breaches across the entire payment ecosystem. It is applicable to any organization that accepts or processes payment cards.

To ensure compliance with PCI, all our payments are processed by Stripe – A world leader in payment processing. We don’t store any customer payment information i.e. credit card info, billing address etc., on our servers.

To learn more about Stripe & their PCI Compliance click here.

GDPR Compliance

At MyGreenPC, we are committed to protecting the privacy and security of our users’ personal information. We strive to comply with the General Data Protection Regulation (GDPR) to ensure that your data is processed lawfully, fairly, and transparently.

Data Protection Officer
We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our data protection activities. You can contact our DPO at compliance@mygreenpc.com, if you have any questions, concerns, or requests related to your personal data and GDPR compliance.

To Learn more about about our efforts to protect your Data and Privacy, click here.