  SmartMed, LP recognizes that customers have certain information that is confidential and must be afforded special treatment and protection. SmartMed will not divulge, disclose, or communicate in any manner any information to any third party. SmartMed will protect the information and treat it as strictly confidential. Upon request, a signed confidentiality statement will be provided to the customer for each SmartMed employee and/or representative. An employee or representative of SmartMed violating the confidentiality of protected health information is subject to serious disciplinary action to include termination of employment. |
 |
  |
||
 |
 Our
web-based platform was designed to comply with
HIPAA
regulations and standards. SmartMed provides confidential and secure
remote access to protected healthcare
information by utilizing user authentication and data encryption.
SmartMed uses
Secure Sockets Layer (SSL)
to provide authenticated and encrypted communication of protected
health information. The encryption uses a 128 bit symmetric key and
1024 bit asymmetric key. Users are authenticated by the system using
a username/password pair. SmartMed also assigns each user to a role.
Users can only utilize features of the system available based on the
role assignment.
SmartMed servers are protected against denial-of-service (DoS) attacks and other forms of unauthorized network access by both a stateful inspection firewall and intrusion detection system.
Protected health information is stored in systems that provide maximum uptime and access to data. This is enabled by redundant hot-swappable hard drives, power supplies and cooling modules. The system uses N+1 redundancy throughout to support the system at full load. |
|||
   |
||||
|
|
 |
|
Home | About Us | Our Services | Career Center | Security | Contact Info |
|
SmartMed
servers are all located in the U.S.A. Our Data
Collocation Facilities have 24x7 on-site security including internal
and external surveillance monitors and documented security
procedures insuring that only authorized persons have physical
access to the computers housing the data. 