My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Item HA3 - Agreement with Iron Mountain, LLC
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2023
>
12/05/2023 Regular & HA
>
Item HA3 - Agreement with Iron Mountain, LLC
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
12/1/2023 3:32:27 PM
Creation date
12/1/2023 3:24:42 PM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Agency
Community Development
Item #
HA3
Date
12/5/2023
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
91
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
<br />Iron Mountain Government Solutions City of Santa Ana Document Storage <br />and Imaging Services <br />Additional details about the background check can be provided upon request. We utilize an <br />enterprise HR system to maintain a record for all hiring activities, which includes an integrated <br />interface with our background screening vendor. Iron Mountain employees also undergo recurring <br />background investigations every three (3) years. Employees sign confidentiality agreements as part <br />of their employment with Iron Mountain, so SAHA and COSA can be assured that any sensitive <br />information will be treated as such. <br />Compliance with HIPAA and OSHA (Exhibit I, General, items h and i) <br />Iron Mountain's secure facilities, coupled with our chain-of-custody controls, offer an end-to-end <br />approach to managing and controlling material to ensure compliance with HIPAA regulations. The <br />HIPAA Privacy Rule requires establishing and implementing measures to ensure the confidentiality, <br />integrity, and availability of all PHI, while the Security Rule addresses safeguards specific to the <br />security of electronic Protected Health Information (ePHI). Iron Mountain maintains compliance with <br />several security standards to protect our customers’ data while in our custody including HIPAA <br />compliance, FISMA compliance, FedRAMP Ready status, ISO 50001 and 27001 certifications, PCI- <br />DSS compliance, NIST SP 800-53 compliance, and SOC 2 and SOC 3 compliance. <br />Iron Mountain is committed to eliminating or controlling workplace hazards that could cause injury or <br />illness to our employees. This is accomplished through compliance with applicable federal, and state <br />safety standards, including the Occupational Safety and Health Administration (OSHA) standards <br />and codes as set forth by the U.S. Department of Labor and the State of California (Cal/OSHA). We <br />maintain a company-wide Safety and Health Program that strives to reduce the incidence of <br />occupational injury and illness by eliminating or controlling risks associated with our operations, and <br />ensure compliance with applicable laws and regulatory requirements. As part of our health and <br />safety program, we continually monitor our performance to determine the effectiveness of the <br />program. We also prepare and report work-related injuries and illnesses via the OSHA Form 300A. <br />Records Storage <br />Pickup Workflow (Exhibit I, Record Storage, item a) <br />Iron Mountain’s workflows combine standard operating procedures with multiple barcode scan points <br />to ensure SAHA and COSA records are accurately processed. Highlights of our pickup workflow are <br />depicted in Figure 5 below: <br />Figure 5. Iron Mountain’s Incoming Workflow. <br />Use or disclosure of data contained in this page is subject to the restriction on the title page of this submission.9
The URL can be used to link to this page
Your browser does not support the video tag.