Physical Security
Healthy.io bases its data centers on Amazon Web Services (AWS) and Google Cloud Platform (GCP).In alignment with ISO/IEC 27001:2013 standards, AWS/Google personnel assign an owner to the AWS and Google Hardware assets and track and monitor the owner with AWS/Google proprietary inventory management tools. AWS and Google data centers’ physical security controls include, but are not limited to, perimeter controls such as fencing, walls, security staff, video surveillance, intrusion detection systems, and other electronic means. The company strictly controls physical access to AWS/Google data centers both at the perimeter and at building ingress points and includes, but is not limited to, professional security staff utilizing video surveillance, intrusion detection systems, and other electronic means. AWS/Google-authorized staff must pass two-factor authentication a minimum of two times to access data center floors. As defined in the AWS/Google Data Center Physical Security Policy, closed-circuit television cameras (CCTV) record physical access points to server locations. The AWS and Google SOC 2 reports provide additional details on the specific control activities executed by both Cloud providers.
Refer to AWS Cloud Security Whitepaper for additional details - available at
http://aws.amazon.com/security
Refer to Google Cloud Security Whitepaper for additional details - available at