In accordance with ISO 27001, HIPAA, and the Health Information Technology for Economic and Clinical Health (HITECH) Act, we are required to ensure the highest levels of safety and security both in our own office environment, and for TRAKnet EHR while it is being used in our clients’ offices. Our ONC-2015 certification assures that this has been done.
TRAKnet Cloud utilizes Microsoft Azure, the industry leader and most-trusted cloud hosting solution. With Azure, file storage is encrypted at rest with AES-256 encryption. All data to and from the server in Azure, which hosts multimedia, is SSL encrypted during transmission and reception. Transparent data encryption (TDE) helps protect Azure SQL Database and Azure Data Warehouse against the threat of malicious activity. It performs real-time encryption and decryption of the database, associated backups, and transaction log files at rest without requiring changes to the application. By default, TDE is enabled for all newly deployed Azure SQL databases.
In addition to the above features and functionality that can help your application meet various security requirements, Azure SQL Database also participates in regular audits and has been certified against a number of compliance standards. For more information, see the Microsoft Azure Trust Center at https://www.microsoft.com/en-us/trustcenter/cloudservices/azure, where you can find the most current list of SQL Database compliance certifications.
In the event of a breach in the Cloud, what safeguards does NEMO Health take to ensure TRAKnet user’s data is protected?
In addition to the Azure SQL back up that occurs every five minutes, we use Gladinet - which also encrypts data at rest and keeps multiple copies of files. Three previous versions of files are kept to assist in the event data restoration becomes necessary. Gladinet has an anti-ransomware functionality that is turned on to stop mass file changes; and the server hosting Gladinet is regularly updated. These high level encryption and protection methods will render data unreadable, even if a security breach does occur.
Not on the cloud yet? Consider these 5 reasons your practice should make the move! To find out more about pricing and how quickly we can get your practice moved to the cloud, contact firstname.lastname@example.org or visit THIS SITE.