Privacy Policy

Mediscript has undertaken HIPAA compliance and has taken painstaking measures to protect all patient information. Mediscript has implemented the following technical safeguards in compliance with the Department of Health and Human Services, Security Standards .

Mediscript has implemented procedures that gives the ability to allow access only to persons that have been granted access right.
Protection of secure server resources is provided primarily bythe firewall. Firewalls screen all inbound and outbound traffic to grant access only to authorized applications, and only to legitimate users. Determining who is a legitimate user (proof of identity) is the role of authentication. Thus access control protects the privacy of information stored on servers.

Mediscript assigns a unique number for identifying and tracking user identity, author identity and patient identity.

Mediscript takes advantage of proven, well-accepted and open standards for authentication and encryption. and transmitted via secure sockets layer (SSL),  during transmission.

Procedures and protocols are implemented at Mediscript  facility throughout the transcription processing phase to assure that all work is completed, and all documentation is tracked and accounted for. Auditing of activities occurring in our system provides for:

• Creation of records concurrent with any use
• Trail records identifying user, data source etc.
• Monitoring all changes to access authorities

When you upload files for transcription you’ll be providing details of a very sensitive nature.  Mediscript will not disclose any information about any person or matter contained in your uploaded files. You retain ownership of all data, and a complete audit trail is available of all personnel who have ever accessed files. Security of your data is important toMediscript. Our policies and technology are designed to adopt the latest and most promising developments in the field. We understand the importance of protection of your data on the Internet.

We have software which guard against unauthorized access to EPHI that is being transmitted over the electronic network. All medical data (dictation, transcription, search facility and EMR) is managed on a secure server that encrypts all data communication between your computer and our server. This means, anyone intercepting any data while it is being transferred from our server to your computer could not interpret or decode this data. Mediscript allows you to view patient files on the secure server and download if required. All downloads will be encrypted and then decrypted with a key. To access any data from the secure Mediscript site a valid username and password is required – as an added level of precaution

Besides the above measures, access to personally identifiable information is restricted to employees and business who need access to the information in order to do their jobs. All employees are committed to the privacy and security policies. The extra step is taken to have all employees execute comprehensive nondisclosure agreements, which provides explicit legal confidentiality protections.