Online security is very important to us
Lifemark has strict privacy and information security policies and procedures in place regarding electronic communication technologies and managing information. We build strong protections into all our services to maximize online privacy and security.
-
Secure data transmission
- Information stored in our systems or shared digitally is kept secure and private by SSL SHA 256-bit certificates with RSA 2048 Ciphers, which is one of the strongest encryption algorithms available today. TLS 1.2 is enforced across all communications.
-
Data backups
- Our systems are backed up every day and stored on a secure server that uses encrypted data transmissions, PHI regulations, TLS 1.2 and secured networks to avoid any potential data loss or corruption. We verify our backup procedures regularly to make sure we provide you with the most secure performance.
-
Protecting personal data
- We maintain tight controls over the level of access of our support personnel and restrict any unnecessary or excess access. Relevant data is only visible for relevant personnel, defined by role-based authorization.
-
Network protection
- Our network is actively monitored 24/7 through our through Network Operation Centers (NOC) and alerting tools. We protect our systems against potential threats such as data breaches, adware, hackers, pop-ups and phishing attempts.
-
Trusted data centers
-
Our critical systems are monitored continuously with fire detection and suppression systems. We maintain several network entrances and our power and cooling are built to ensure at least N+1 redundancy.
-
Our centralized control center has security personnel on site 24/7 who can handle day-to-day support requests and escalations. Professional security measures with extensive video surveillance, bullet-resistant entrances and biometric controls are in place.
-
For access to individual customer environments, biometric readers maintain proper safeguards.
-
SOC 1 (SSAE-16/CSAE-3416/ISAE-3402) type 2 audits were performed for the hosting centers and they are PCI DSS certified for physical security standards.
-
The hosting centers working according to ISO 27001 standards and SOC 2, type 2.
-
-
Security and compliance
-
We develop and maintain our system according to the NIST cybersecurity framework. We partner with local security firms to conduct penetration testing and internal vulnerability scanning.
-
For more information, please consult our Privacy Policy page.
-