Concepts Cloud

Concepts Cloud is a global leader in cloud computing solutions. We are focused on pioneering the integration of Cloud Computing and Business Apps as a Service, which enables companies to simplify IT operations, increase operational efficiency and reduce costs without changing the way they do business. Concepts Cloud offers business freedom; your apps go where you are on any device. We are the “Next Generation Computer.”

100% Uptime SLA: Ensures 100% server availability provided to Concepts Cloud Hosting Customers. Concepts Cloud will credit customers’ accounts if we fail to meet this Server Uptime Guarentee during any given calendar month.

24x7x365 Help Desk Support: US-based support offered to Concepts Cloud customers. Help Desks are staffed with Level I and Level II Engineers providing exceptional support. Calls are answered within less than a minute and 65% of calls are closed after the first call.

Enterprise-Level Technology: Partnering with Concepts Cloud allows you to benefit from enterprise-level technology including Cisco UCS Blade Servers, SonicWALL Firewalls, NetApp, VMware, Citrix, and Microsoft.

Security: Concepts Cloud understands security concerns in the Cloud. Our data centers include on-premises guards, an exterior security system and biometric scanning for entrance.

Tier 3, Class 1 Data Centers: Concepts Cloud’s Data Centers offer clean and continuous power, high capacity redundant generators and around-the-clock
infrastructure protection.

SAS70 Type II, SSAE16 Certified Data Centers: Concepts Cloud has chosen to partner with data centers that follow these standards.

Storage: Concepts Cloud offers enterprise-grade encryption (256 bit key). Data is encrypted in flight and at rest. All SAN’s and Self Encrypting Drives.

Compliance: Concepts Cloud has the proper controls in place for an organization to be HIPAA, PCI, and Sarbanes-Oxley compliant.

Redundant Data Centers: Current data center locations include California, Virginia and Texas.

Ticketing Process: Tickets are opened by calling the Help Desk or emailing

Additional Support: In addition to our Help Desk, you will have a dedicated Account Manager as a point of contact to ensure that you have multiple levels of support.


Concepts Cloud recognizes the need for compliance with various laws across different industries. We have established our data encryption, protocols, and procedures to follow the top compliances and ensure that our customer’s data is secure and confidential.

Sarbanes-Oxley Act (Sarbox or SOX)

What Sarbanes-Oxley covers: Enacted in 2002, the Sarbanes-Oxley Act is designed to protect investors and the public by increasing the accuracy and reliability of corporate disclosures. It was enacted after the high-profile Enron and WorldCom financial scandals of the early 2000s. It is administered by the Securities and Exchange Commission, which publishes SOX rules and requirements defining audit requirements and the records businesses should store and for how long.

Who is affected: U.S. public company boards, management and public accounting firms.

Payment Card Industry Data Security Standard (PCI DSS)

What it covers: The PCI DSS is a set of requirements for enhancing security of payment customer account data. It was developed by the founders of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa to help facilitate global adoption of consistent data security measures. PCI DSS includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures.

Who is affected: Retailers, credit card companies, anyone handling credit card data.

Health Insurance Portability and Accountability Act (HIPAA)

What it covers: Enacted in 1996, HIPAA is intended to improve the efficiency and effectiveness of the health care system. As such, it requires the adoption of national standards for electronic health care transactions and code sets, as well as unique health identifiers for providers, health insurance plans and employers.

Recognizing that electronic technology could erode the privacy of health information, the law also incorporates provisions for guarding the security and privacy of personal health information. It does this by enforcing national standards to protect:

  • Individually identifiable health information, known as the Privacy Rule.
  • The confidentiality, integrity and availability of electronic protected health information, known as the Security Rule.

Who is affected: Health care providers, health plans, health clearinghouses and “business associates,” including people and organizations that perform claims processing, data analysis, quality assurance, billing, benefits management, etc.

Statement on Standards for Attestation Engagements (SSAE)

What it covers: Statement on Standards for Attestation Engagements (SSAE) No. 16, Reporting on Controls at a Service Organization, was finalized by the Auditing Standards Board of the American Institute of Certified Public Accountants (AICPA) in January 2010. SSAE 16 effectively replaces SAS 70 as the authoritative guidance for reporting on service organizations. SSAE 16 was formally issued in April 2010 and became effective on June 15, 2011.

Who is affected: Payroll Processing, Loan Servicing, Data Center/Co-Location/Network Monitoring Services, Software as a Service (SaaS), Medical Claims Processors.

Defense in Depth

What it covers: Defense in Depth is practical strategy for achieving information Assurance in today’s highly networked environments. It is a “best practices” strategy in that it relies on the intelligent application of techniques and technologies that exist today. The strategy recommends a balance between the protection capability and cost, performance, and operational considerations.

Concepts Cloud complies with the standards and regulations set forth in the respected industries. Concepts Cloud has not undergone auditing by an outside source, however, we run our own internal audits to ensure we are compliant. We are so confident in our compliance that we sign a business associate agreements when requested by customers.