Last modified: August 10, 2018
Compliance with state and federal regulations regarding patient confidentiality, security, and privacy is the responsibility of all health care providers and related vendors. This includes, but is not limited to, compliance with the Health Insurance Portability and Accountability Act (HIPAA) of 1996. MD.ai offers a set of DICOM compliant storage products that also comply with HIPAA and other privacy and security requirements and configurable storage and distribution systems that are designed to protect the privacy and security of patient information. MD.ai software is configurable to help meet the end user’s needs and includes user authentication models such as traditional username and password, as well as SSL certificate verification and other customizable security tokens. One or more of these authentication models are required for all users accessing MD.ai-provided systems and software. Most access to data is performed via the DICOM TLS protocol or HTTPS.
MD.ai products adhere to the DICOM standard. MD.ai prohibits any user from sharing or disclosing their password, username, or other security tokens such as client SSL certificates, and any such disclosure shall constitute a breach of the Policies which shall allow MD.ai in its sole discretion to terminate your account and prohibit any further access to the Site or the MD.ai services.
MD.ai software allows for encryption when information is transmitted via the internet (SSL, TLS, or VPN). MD.ai software provides an audit trail of all electronic events related to any data within our system. The log can be viewed for further analysis. MD.ai supplies fault tolerant storage servers and other related technologies to support your disaster planning.
Security informs everything we do and build at MD.ai. To ensure the highest standards of security, we:
MD.ai complies with the US-EU Safe Harbor Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries. MD.ai has certified that it adheres to the Safe Harbor Privacy Principles of notice, choice, onward transfer, security, data integrity, access, and enforcement. To learn more about the Safe Harbor program, and to view our certification page, please visit http://www.export.gov/safeharbor/.
MD.ai has further committed to refer unresolved privacy complaints under the US-EU Safe Harbor Principles to an independent dispute resolution mechanism, the BBB EU SAFE HARBOR, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgement of your complaint, or if your complaint is not satisfactorily addressed by MD.ai, please visit the BBB EU SAFE HARBOR web site at www.bbb.org/us/safe-harbor-complaints for more information and to file a complaint.
If you have additional questions, please contact us any time:
110 Wall St
New York, NY 10005
© 2018 MD.ai, Inc.