Transmission Encryption: Information is always encrypted as it is transmitted over the Internet. Any page that collects or displays protected health information, is used for user logins, transmits authorization cookies, etc., is protected by SSL and is not to be insecurely accessible. This insures all data transmission is securely communicated between the end user and our web site via SHA 256.
Authorization: Only accessible by authorized personnel using unique, audited access controls. Software and hardware controls are put in place to guarantee that information which resides on our web site or which is collected there is only accessible to their respective organizations.
Backup: All data is backed up and can be recovered at any time. We ensure that all information stored with our website or collected from our website is backed up and can be recovered in case of an emergency or accidental deletion. We take great care to guarantee that those backups are robust, available, and accessible only by authorized people.
Integrity: Information is NEVER tampered with or altered. Information that is collected and stored is encrypted during communication. There is no way to tamper with it while in transit and only authorized personnel have access to the data as needed. At no point is data deleted or removed for any reason.
Storage Encryption: Data is encrypted if it is being stored or archived. Information that is collected and stored is encrypted during communication. There is no way to tamper with it while in transit and only authorized personnel have access to the data as needed. At no point is data deleted or removed for any reason.
Disposal: Media can be permanently disposed of when needed. All media that comes in contact with any data whether encrypted or “data at rest” is destroyed and disposed of appropriately. All precautionary measures are taken to ensure no data is released accidently.
Business Associates: We require all participants with ID-Queue acknowledge the “Liability Disclaimer Agreement”. This agreement ensures that the vendors will follow the HIPAA security rule requirements with respect to their data. Note: ID-Queue provides services that are not intended to house or store any PHI at any time for any reason. It is not necessary to include any medical information that can be linked in any way back to a patient. This is NOT the intent of our services and should NEVER be used as so.
Location: ID-Queue services are hosted within a secure Colo Location. Location is everything when it comes to offering cloud services. In order to insure and provide the highest level of redundancy, reliability, and security ID-Queue provides all hosted services from within the convenience of a Colo Location. Authorized access is required to the servers and all servers are dedicated 100% to offering services solely to ID-Queue customers only.