Radiology Services Online-How Safe is the Information?

• Our first defense is a Secure Sockets Layer, SSL, the standard security technology for creating an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browser remain private and integral. SSL is an industry standard and is used by millions of websites in the protection of their online transactions with their customers.
  
  
• Our second defense is that we prepare and store health information in a digital format. Based on this requirement, these digital records, including x-ray images, are exchanged from one computer to another over the internet through HIPAA compliant FTP hosting with the primary advantage of data encryption.
  
  
• Our next protective measure is secure access through the use of site/user specific identification and password protection.
  
  
• We have also implemented Strong Windows Authentication (SUA) to meet the single user-single log-in requirement which allows us to audit and trace every single user action.
  
  
• The servers that house the data are stored in two separate secure locations and the user will not know which server is receiving the information.
  
  
• We use HIPAA-compliant Cisco PIX firewalls to protect the site and network against most known attacks.
  
  
• Finally, we also use Client Browser Certificates to block any unauthorized computer from gaining access to the site.