ISO 27001 : 2013 Certified Company

Compliance

Compliance


Medryte is an ISO/IEC 27001:2013 certified company since 2013 and follows the guidelines of the International Organization for Standardization and the International Electrotechnical Commission.


We will submit the HIPAA confidentiality agreements to our clients signed by all our staffs who work in client’s project.


We are ready to work on RDP and VPN if you prefer.


Our premise is under CCTV surveillance.


Social networking sites are restricted to all employees using Sonic wall (TZ300) firewall.


Medryte has a very detailed disaster recovery and business continuity plan with risk management, emergency response, alert, escalation and plan invocation, assembly points, activation of emergency response team, DR procedures for management, backup staff, hot site, rules for dealing with media and DRP exercising.


The company has signed the HIPAA business associate agreement with our corporate email service provider.


All the information’s are stored in our highly secured server and backups are taken frequently.


We have a secured SFTP to transfer data’s. Outside the EU. We will not share any patient data’s through emails. For internal data transfer, we have a secured intranet platform.


Our ISO/IEC 27001:2013 external auditors visit our company once in every 3 months and evaluate the data security and they provide 4hrs training for all the staffs. They also give us improvement plans which needs to be fulfilled during their next audit.


Access control devices in office entrance, work station and IT room.


Physical well trained security guards 24 x 7.