Compliance for hosting healthcare data in Europe and in the United Kingdom
Personal healthcare data is particularly sensitive, and its confidentiality is rigorously governed in all European states, through the GDPR as well as local requirements.
We have in-depth expertise as a cloud solutions provider in this sector, and offer our customers a specific contract for hosting healthcare data which is applicable to a number of European countries.
We offer contractual conditions that are specific to the healthcare sector. This includes specific security measures and guaranteed global availability commitments. The responsibilities shared between the customer and OVHcloud are explicitly listed, and subscription to Business or Enterprise level support is mandatory.
We commit to follow regulatory obligations — the GDPR in Europe, and various legislations associated with healthcare data hosting in a number of countries, including France, Germany, the UK, Italy and Poland.
The French Agency for Digital Healthcare (ANS) sets a rigorous framework for the practices associated with healthcare data hosting, and HDS certification is a mandatory requirement for it. OVHcloud received this approval in 2016, then received HDS certification in 2019 — so that all its Healthcare customers could benefit from this reassurance.
Prices of our healthcare-compliant products
| Packs - with Business or Enterprise level support required | Price per month |
|---|---|
| PRE 48 (2 hosts each with 48 GB of RAM and 12 cores) | £1,314.00 ex. VAT/month |
| PRE 96 (2 hosts each with 96 GB of RAM and 12 cores) | £1,722.00 ex. VAT/month |
| PRE 192 (2 hosts each with 192 GB of RAM and 16 cores) | £2,080.00 ex. VAT/month |
| PRE 384 (2 hosts each with 384 GB of RAM and 32 cores) | £3,160.00 ex. VAT/month |
| PRE 768 (2 hosts each with 768 GB of RAM and 32 cores) | £4,362.00 ex. VAT/month |
| PRE vSAN 192 (3 hosts each with 192 GB of RAM and 40 cores) | £4,698.00 ex. VAT/month |
| PRE vSAN 384 (3 hosts each with 384 GB of RAM and 40 cores) | £6,801.00 ex. VAT/month |
| PRE vSAN 768 (3 hosts each with 768 GB of RAM and 40 cores) | £9,957.00 ex. VAT/month |
| Host | With HDS certification |
|---|---|
| PRE 48 | £516.00 ex. VAT/month |
| PRE 96 | £720.00 ex. VAT/month |
| PRE 192 | £899.00 ex. VAT/month |
| PRE 384 | £1,439.00 ex. VAT/month |
| PRE 768 | £2,040.00 ex. VAT/month |
| PRE vSAN 192 | £1,472.00 ex. VAT/month |
| PRE vSAN 384 | £2,173.00 ex. VAT/month |
| PRE vSAN 768 | £3,225.00 ex. VAT/month |
| Datastore | Price per hour | Price per month |
|---|---|---|
| 3 TB | £0.35 ex. VAT/hour | £126.00 ex. VAT/month |
| 6 TB | £0.71 ex. VAT/hour | £234.00 ex. VAT/month |
| 9 TB | £0.89 ex. VAT/hour | £324.00 ex. VAT/month |
| 18 TB | £1.80 ex. VAT/hour | £649.00 ex. VAT/month |
| 36 TB | £3.60 ex. VAT/hour | £1,290.00 ex. VAT/month |
| Server - with Business or Enterprise level support required | Price |
|---|---|
| mHG-2019 | From £195.99 ex. VAT/month or £235.19 incl. VAT/month |
| FS-MAX | From £261.99 ex. VAT/month or £314.39 incl. VAT/month |
| HG-2019 | From £296.99 ex. VAT/month or £356.39 incl. VAT/month |
| BHG-2019 | From £525.99 ex. VAT/month or £631.19 incl. VAT/month |
Datacentres that are HDS-certified and compliant for healthcare data hosting
OVHcloud datacentres:
OVHcloud datacentres:
Healthcare data solutions
What is HDS healthcare certification?
Both personal healthcare data and healthcare data solutions are particularly sensitive. They are a vital part of patients’ private lives, an important building block in the healthcare journey, and a useful tool for healthcare professionals. The regulator progressively defines the practices associated with rapid development of healthcare data solutions.
As a result, healthcare professionals, establishments and patients need to contact certified service providers for hosting personal healthcare data externally. Ministerial accreditation offers an additional guarantee in the ethical and financial domains, in terms of respecting patients’ rights and complying with data security regulations.
The legal framework for hosting healthcare data is based on article L.1111-8 of the public healthcare code, created by the Kouchner law (law n°2002-303 of 4 March 2002 relative to patient rights). Decree n°2006-6 of 4 January 2006 defines the accreditation conditions for healthcare data hosting providers using IT equipment. Its terms have been added to articles R.1111-9 onwards in the public healthcare code.
Currently, only our datacentres in France and Canada have HDS certification, but we will soon be receiving it for our datacentres in the UK, Germany and Poland.
Stronger collaboration between OVHcloud and healthcare professionals
With its Private Cloud Healthcare solution, OVHcloud provides an optimal infrastructure for hosting healthcare data solutions. This specially-designed solution comes with a strict responsibility shared with the data controllers, linked to the sensitivity of the services and the data hosted.
To achieve this, OVHcloud relies on a team of experts and a doctor specialised in hosting healthcare data. In addition to this, healthcare customers have access to the documentation they need to implement a secure and reliable healthcare information system.
We promise to ensure compliance with the legal and regulatory obligations in force, particularly with regards to personal data protection and healthcare data hosting. We also ensure that any service providers and processors are compliant. This commitment is reflected through the review of OVHcloud Healthcare customer contracts by a doctor from the hosting company, and the clause for customer audits outlined in the OVHcloud Healthcare Special Conditions.
OVHcloud maintains an increased level of security for healthcare data, in compliance with the very strictest legal and regulatory requirements in force. The measures we deploy are both organisational and technical. We focus particularly on data access control, high-level authentication, and the traceability of all operations carried out on the data. A confidentiality and security policy is formalised, implemented and evaluated.