iKnowMed customers can feel confident that the patient information entered into the iKnowMed application is safe and secure with redundancy efforts in place to back up all data entered. Though the practice is responsible for implementing and maintaining their own technical security measures, such as not sharing application credentials with others and utilizing firewalls and virus protection software, the iKnowMed team has made significant efforts to protect the sensitive patient records saved to the iKnowMed servers.

Compliance. The iKnowMed application is HIPAA compliant. For those practices also seeking to become 21 CFR part 11 compliant, iKnowMed provides two of the deliverables that are required to achieve this compliance standard.

Data Security. To maintain the security of the data entered into the iKnowMed application, SSL-encryption is applied to all iKnowMed data that passes over non-private network connections. Additionally, unique user ID’s control access to the application based on specific user roles, and the audit trail captured within the application itself tracks all user activities.

The iKnowMed Internet circuits are protected by Cisco ASA firewalls, and a McAfee IPS (Intrusion Prevention System) sits with the datacenter as an additional layer for blocking malicious access. There is no direct network path from the Internet to the databases, only to the SSL offload, which is provided by a Citrix NetScalar. Physical access to the servers is controlled by a multi-level entry access system, while the servers themselves sit in key locked server racks.

Data Back-ups. The iKnowMed datacenter maintains high levels of redundancy, including redundant power and network infrastructure. In the unlikely event of a server outage or database corruption, the iKnowMed team has the ability to rebuild the database to a point no more than 15 minutes prior to the incident, as a result of nightly backups of iKnowmed and server transaction logs being backed up every 15 minutes.