Software Compliance

• Data security
• Application security
• System security

Data Security is ensured by employing user authentication, data encryption and data integrity protection. CodeRunner information is transferred via Hyper Text Transfer Protocol (HTTP), taking advantage of Secure Sockets Layer (SSL) security. SSL authentication requires digital identification certificates to assure communication only with authorized servers and users. CodeRunner also uses 128-bit encryption for all information transmitted via the Internet; the encrypted HTTPS connection is further protected by a cryptographic mechanism to detect whether any data has been altered while in transit.

Application Security includes system access, privileges and restrictions, and activity auditing and reporting. Users must present a valid user ID and password to gain access to CodeRunner, and the application automatically closes if it is left unattended for a specified period. System permissions and restrictions are granted at the group, role, and user level, and all user activity is tracked and logged for a complete audit trail.

System Security includes physical security at both the SunGard Data Center in Alpharetta, Ga., where the coding data are stored, and MedQuist’s backup data center in Philadelphia, Pa., that mirrors the contents of the Georgia location. In addition, extensive Internet security is provided by a firewalling application called Checkpoint Firewall 1. Physical security at both data centers includes smoke detection and fire suppression systems, secured access, video surveillance, and security breach alarms.

For detailed information about MedQuist’s assurance of security and confidentiality under HIPAA, please download a copy of the White Paper, CodeRunner and HIPAA, or ask your MedQuist representative for a copy.