CMS and HIPAA Security Standards

We want our clients to feel comfortable that our Internet Transfer System meets or exceeds all elements of the security standards published by CMS and HIPAA. These security standards address the technical mechanisms used to guard against unauthorized access to data that is transmitted over a communications network to protect confidential medical information.

To review the CMS security standard, please click on this link. http://www.cms.hhs.gov/it/security/docs/internet_policy.pdf

To review the HIPAA security standard, please click on this link. http://aspe.os.dhhs.gov/admnsimp/nprm/sec09.htm

Unlimited Transcription Security Plan

To comply with the above standards to safe guard confidential medical records during “transmission” and while “parked” we have developed the following Security Plan.

Our Internet Transfer Software employs Authentication and Encryption of all Internet transfers using RSA public key authorization and symmetric key encryption to verify identities and encrypt data. This guarantees that neither PC is an impostor and effectively prevents third parties from deciphering data that our PCs exchange. Every transmission event is recorded on the event log and the log provides review capabilities for every inbound or outbound transmission.

Our secure servers are connected to the Internet with a broadband phone line data connection (T1) and are firewall protected. Each server has a backup drive installed to duplicate all data and ensure data recovery if any primary drive fails. Every server has virus protection with online live update subscription and all servers have back up emergency electrical power.

Unlimited Transcription is pleased to provide this security information to increase our clients' comfort level regarding Internet transfer of confidential medical information.  The United States Air Force has certified our Internet Software safe for their continued military transcription needs and has used our Internet Transfer Software for the last 3 years.