Security & Reliability
Medicat Hosted Technology sets the Industry Standard for Reliability & Redundancy
Customers benefit from a secure, Medicat-owned private cloud infrastructure housed within a TierPoint Type 2 SOC 2 and SOC 3 facility, which is certified at a Tier III Standard by the Uptime Institute and located in Research Triangle Park, North Carolina with a warm standby backup data center in Franklin Park, Illinois. Customer data, all encrypted at rest, is replicated in near real time from primary to backup data center.
This High Availability architecture meets the industry’s 2N best practice standard and enables the 99.9% uptime guarantee.
Disaster Recovery with Minimal Down Time
Medicat has also taken geographic redundancy to the next level with a pre-built warm standby disaster recovery site at a comparable TierPoint facility in Chicago, Illinois. This facility, also designed to a 2N standard, asynchronously replicates and archives client data from the Research Triangle Park facility.
Should a catastrophic, non-recoverable event disable the TierPoint facility in Research Triangle Park (e.g., direct hit by a large tornado), Medicat would bring up the Warm Standby site in Chicago, and users could resume their work with only a brief interruption. In this case, Medicat has a Recovery Time Objective (time to resume use of the system) of 3 hours or less and a Recovery Point Objective (time over which data would be lost) of less than 1 hour.
Security with Type 2 SOC 2
To ensure storage, handling, and protection of clients’ electronic Patient Health Information (ePHI) meets and exceeds all government and industry standards, Medicat has made significant investments in its infrastructure and security framework. To substantiate that investment, Medicat has gone through the same third-party audit process as leading data centers in the country and has received Type 1 SOC 2 and Type 2 SOC 2 Examinations.
A company that has performed Type 2 SOC 2 Examination has proven its system is designed to keep clients’ sensitive data secure over time. When it comes to the cloud and related IT services, such performance and reliability are essential and required more often by regulators, examiners, and auditors.
“When asked if they are HIPAA compliant, vaccine verification vendors may answer yes. But the only way to prove compliance is for the vendor to successfully complete an external audit, preferably one conducted by a reputable audit firm with HIPAA experience,” said Daryl Rolley, Medicat CEO. “The rigorous requirements of a Type 2 SOC 2 Examination provide an unmatchable level of confidence and security when considering a move to the cloud. It is critical to ensure your partner has achieved external audits to meet these standards.”