BigMIND is an automated backup service that securely stores your data on Amazon AWS storage servers. In contrast to numerous other online or cloud backup services that store data on their proprietary servers, BigMIND utilizes advanced technologies to enable centralized management and backup to Amazon AWS servers. We do not have access to your data at any point; it is encrypted before leaving your device and remains encrypted while stored on Amazon AWS servers.
BigMIND is built to meet the needs of organizations operating under strict regulatory standards. The platform incorporates security controls, encryption policies, and auditing mechanisms that align with globally recognized frameworks.
Amazon’s Compliance Certificates
 |
 |
 |
 |
 |
 |
HIPAA & HITECH Compliance
BigMIND supports HIPAA and HITECH compliance and signs Business Associate Agreements (BAAs) with eligible customers. This ensures that customers operating in the healthcare sector can maintain regulatory compliance when storing and managing protected health information (PHI) on BigMIND. The platform includes encryption, access controls, audit logs, and strict administrative policies designed to meet HIPAA requirements.
FERPA Compliance
While FERPA (Family Educational Rights and Privacy Act) does not certify vendors directly, BigMIND provides the necessary technical safeguards—such as end-to-end encryption, secure access control, and detailed audit logs—that educational institutions can rely on to maintain FERPA compliance.
PCI DSS Alignment
BigMIND is compliant with PCI DSS (Payment Card Industry Data Security Standard) as stated in the security whitepaper. This includes strong encryption practices, strict access control, secure authentication, and continuous monitoring of the storage infrastructure. Customers who handle payment-related data can rely on BigMIND’s platform security to support their own PCI DSS compliance needs.
ISO Certifications (27001, 9001)
The underlying infrastructure supporting BigMIND adheres to ISO-certified data center practices such as:
- ISO 27001 – Information Security Management
- ISO 9001 – Quality Management
These certifications are held by BigMIND’s third-party data center providers (AWS), ensuring that global industry standards for operational and security excellence are maintained.
SAS-70 / SSAE Audits
BigMIND data centers follow modern successors to SAS-70 (i.e., SSAE-16/18 and SOC audits) through AWS, which maintains strict controls for physical, environmental, and operational security. This ensures a robust compliance foundation for all BigMIND services.
Safe Harbor / GDPR Compliance
BigMIND is fully GDPR-compliant, and the privacy policy clearly outlines how data is collected, stored, processed, and protected. Although Safe Harbor has been replaced by other mechanisms, BigMIND maintains compliance with modern international data transfer and privacy regulations.