NueMD® Security Overview
At NueMD, our commitment is to provide you with a practice management solution that gives you the highest level of security possible. There are several Web-enabled medical management Application Service Providers (ASPs) on the market today, but NueMD’s medical management software is Internet-based. NueMD is not delivered through your browser, but via a direct connection from your workstation to a highly protected environment using the Internet as a conduit. Our technology creates a secure pipeline that transports data past the cluttered, busy World Wide Web, allowing you to avoid contact with viruses, spyware, SPAM, and other unwanted Web browser traffic. Our system operates in the same environment commonly used by the Defense Department and Federal Reserve to handle their information transfers.
Internet Security
All data stored in NueMD is encrypted using 128 bit Secure Socket Layer (SSL), an industry standard in data encryption. Algorithms scramble data so that unauthorized users cannot view it, keeping your patient data safe from data pirates or hackers.
Data Security
As an ASP, Nuesoft has multiple servers in multiple structures throughout the country. The security of these structures is never compromised and always strictly controlled. Our servers are configured according to Redundant Array of Independent Disks (RAID) architecture, which distributes data across several hard drives and provides for its recovery if it is lost. In addition, we continuously perform backups, security and fault tolerance checks. Transaction log backups are conducted every three hours. We conduct differential backups each day, and full backups multiple times each week. This not only ensures the safety of your data, but also releases you from performing backups yourself.
Physical Security
Your data is stored at ultra secure data centers that require visual identification when entering. Access is strictly controlled, traffic is monitored via Closed Circuit TV (CCTV), and there is a guard on duty round-the-clock to prevent against unauthorized entry.
System Administration
Nuesoft has set up controls to prevent unauthorized users from accessing and altering data. The NueMD system uses preventive controls to alert a user when he or she is altering any data that requires integrity. User permissions set by an administrator determine who can access, view, add, delete and alter pertinent information. Detective controls, such as audit trails, are in place to detect failures in preventive controls. Users can be removed upon termination of employment in your office.
HIPAA Compliance
Nuesoft represents and warrants that to its knowledge the NueMD system is substantially HIPAA-compliant, as such terms are defined in the Health Insurance Portability and Accountability Act of 1996 (HIPAA). In addition, Nuesoft will comply with all HIPAA requirements concerning the use, transmission, and storage of patient-related information. We track the federal regulations and laws governing health information technology, and if changes occur, we upgrade our system, ensuring that you are constantly in compliance.
