Domino Cloud is Now HIPAA and GDPR-compliant

Leila Nouri2023-10-03 | 3 min read

HIPAA GDPR security privacy compliance
Return to blog home

Domino Cloud is now HIPAA and GDPR-compliant, adding to the AI and MLOPs platform’s robust compliance and security accreditations. HIPAA is The Health Insurance Portability and Accountability Act, a US bill protecting patient health and medical information (PHI), and GDPR is the General Data Protection Regulation, a European Union (EU) law protecting where personal data is stored and how it is processed.

Domino Cloud, our single-tenant SaaS offering (operating in a VPC dedicated to you), gives your team fast and secure access to the Domino platform. Adding Domino Nexus to Domino Cloud helps you avoid moving sensitive data from on-premises data centers and can lower compute costs. 

“Domino Cloud’s compliance with HIPAA means that customers can trust that their sensitive patient health information (PHI) is secure and patient privacy will always be protected on Domino,” notes John Brunn, Domino’s CISO.

Domino Cloud protects sensitive data with end-to-end encryption at rest and in transit, single-tenant network isolation, and granular role-based access control. Customers access Domino using their corporate SSO credentials. Domino Cloud also caters to compliance-focused customers with:

Single-Tenant Network Isolation: Domino Cloud is a single-tenant offering where each customer resides in their AWS subaccount and within their own VPC. This ensures that sensitive data and critical applications are isolated from other deployments, minimizing the potential impact of any security incident.

End-to-End Encryption of PHI: All data is encrypted at rest (AES-256 encrypted with KMS) and in transit (TLS 1.2), utilizing industry standard protocols and configurations.

End-to-End Security Management & Monitoring: Domino performs vulnerability assessment and penetration testing, security monitoring, and auditing (with third parties) and performs regular data backups, patch management, and health checks to ensure high availability for protected data.

Data & Model Traceability: Domino is the only MLOps platform to offer full traceability, so all code, models, data, and environments (and versions) can be viewed, and experiments can easily be recreated.

Domino is also ISO 27001:2013 & SOC 2 Type 2 certified and supports GxP compliance, offering an additional layer of security assurance.

Learn more about Domino Cloud and Security with Domino.

Leila Nouri, Domino Data LabLeila Nouri

Leila Nouri, Director of Product Marketing at Domino Data Lab, is an innovative and data-driven product marketing leader with 15+ years of experience building high-performing teams, go-to-market campaigns, and new revenue streams for startups and Fortune 500 companies.

Subscribe to the Domino Newsletter

Receive data science tips and tutorials from leading Data Science leaders, right to your inbox.


By submitting this form you agree to receive communications from Domino related to products and services in accordance with Domino's privacy policy and may opt-out at anytime.