CoreSite Realty Completes Annual Compliance Reports for Datacenter Colocation 

DENVER, Aug. 23, 2017 -- CoreSite Realty Corporation (NYSE: COR), a premier provider of secure, reliable, high-performance data center and interconnection solutions across the U.S., today announced it has successfully completed the following annual examinations for the colocation services offered across its platform of 17 operating multi-tenant data centers. The completion of these various compliance objectives demonstrates CoreSite’s ongoing commitment to operational excellence, while enabling its customers to meet a diverse array of industry compliance and United States regulatory requirements.

• System and Organization Controls (SOC) 2 Type 2 examination
• SOC 1 Type 2 examination
• International Organization for Standardization certification (ISO 27001)
• Payment Card Industry (PCI) Data Security Standard (DSS) validation
• Health Insurance Portability and Accountability Act (HIPAA) attestation

The SOC 1 and SOC 2 examinations are attestation standards issued by the American Institute of Certified Public Accountants (AICPA), and both reports have been issued under Statement on Standards for Attestation Engagements (SSAE) No. 18 , which is the new AICPA standard for SOC reports. SOC 2 is measured using a standardized set of criteria, requirements, and controls; whereas, SOC 1 is measured against company-defined control objectives and underlying controls. The examinations provide CoreSite customers with the assurance of corporate controls, including controls relating to physical and environmental security, customer support, and operational excellence. Companies with compliance requirements may require SOC 1 or SOC 2 examination reports, including publicly traded enterprises, financial firms, and healthcare organizations.

ISO 27001 is an internationally recognized standard that outlines the requirements for constructing a risk-based framework to initiate, implement, maintain, and manage information security within an organization. The ISO 27001 certification, one of the most stringent certifications for information security controls, confirms that specified information security controls and other forms of risk treatment are in place to detect and defend against potential information security threats and vulnerabilities. The certification also ensures that the information security controls continue to meet physical security needs on an ongoing basis. The scope of the ISO 27001 certification is applicable to the information security management system (ISMS) supporting CoreSite’s provision and operation of 24x7 colocation services for its customers, and covers both its corporate policies and procedures as well as those of its operating data centers.

The PCI DSS is a broad set of standards that require merchants and service providers that maintain or host systems that store, process, or transmit customer payment-card data to adhere to strict information security controls and processes. As a provider of data center colocation services, CoreSite has proactively met the relevant requirements for its business in support of the PCI compliance needs of its customers. The 2017 PCI DSS report has been issued under version 3.2, which is the current standard for this report.

HIPAA requires that covered entities and business associates take strong measures to protect the privacy and security of protected health information. By attaining an attestation against the HIPAA Security Standards for the Protection of Electronic Protected Health Information (“HIPAA Security Rule”) and the Notification in the Case of Breach of Unsecured Protected Health Information enacted as part of the American Recovery and Reinvestment Act of 2009 (“HITECH Breach Notification Requirements”), CoreSite provides assurance to healthcare industry stakeholders that its data center colocation services meet the HIPAA Security Rule and HITECH Breach Notification requirements necessary to protect a covered entity’s physically hosted information systems in CoreSite’s national platform of multi-tenant data centers.

All of the above examinations and assessments were conducted by Schellman & Company, LLC, an independent CPA and Qualified Security Assessor (QSA) firm.

About CoreSite

CoreSite Realty Corporation (NYSE:COR) delivers secure, reliable, high-performance data center and interconnection solutions to a growing customer ecosystem across eight key North American markets. More than 1,200 of the world’s leading enterprises, network operators, cloud providers, and supporting service providers choose CoreSite to connect, protect and optimize their performance-sensitive data, applications and computing workloads. Our scalable, flexible solutions and 430+ dedicated employees consistently deliver unmatched data center options — all of which leads to a best-in-class customer experience and lasting relationships. For more information, visit www.CoreSite.com.

Source: CoreSite