CIMRO has implemented federally approved technologies and methodologies that include encryption and destruction procedures and uses computer systems, namely ShareFile and Nucleus.io, to handle confidential information electronically. Those systems can only be accessed by authorized personnel. All electronic messages of a confidential nature must be sent and received by encrypted email, using ShareFile or Nucleus.io, CIMRO’s secure electronic transfer systems.
All data transfers are encrypted using a minimum of 256-bit SSL (Secure Sockets Layer). Data saved to ShareFile servers are saved with 256-bit AES encryption. NucleusHealth servers store files using 128-bit file encryption. Data saved to these services has a unique encryption key. When data is uploaded, it is encrypted before being copied to its permanent storage location. The data encryption keys are not stored on the same server with the data itself, ensuring that someone with physical access to ShareFile or Nucleus.io storage servers has no access to the data. This includes any messages and attachments that contain HIPAA-protected information, as well as any CIMRO or client information considered confidential for business purposes.
ShareFile
To send data via ShareFile, CIMRO will provide the client with a hyperlink in an email message. ShareFile will request the client to create a password. Data can be easily uploaded, and once sent, CIMRO receives notification from ShareFile to download the data.
Upon completion of CIMRO’s review of the medical records, the confidential report is uploaded to ShareFile and the client is notified via ShareFile to download the document. ShareFile links expire after 30 days.
Medical Image Sharing
CIMRO uses Nucleus.io, a web-based, vendor neutral medical image management solution. This secure cloud platform allows for secure image sharing via a HIPAA-compliant internet exchange. It is technology created by physician peers in the medical industry who understand medical workflow and the need for ease of use.
Images are uploaded to the Nucleus.io site in two ways – either directly by the client, or by CIMRO personnel from a CD sent to us by the client. Once images have been uploaded, we are able to share them immediately with a Nucleus.io-trained CIMRO physician reviewer, who can instantly view the images via the web browser. This secure, efficient method not only improves workflows but significantly reduces the risk of potential breaches of protected health information due to the nature of sending medical images through the mail.
All data transfers are encrypted using a minimum of 256-bit SSL (Secure Sockets Layer). Data saved to ShareFile servers are saved with 256-bit AES encryption. NucleusHealth servers store files using 128-bit file encryption. Data saved to these services has a unique encryption key. When data is uploaded, it is encrypted before being copied to its permanent storage location. The data encryption keys are not stored on the same server with the data itself, ensuring that someone with physical access to ShareFile or Nucleus.io storage servers has no access to the data. This includes any messages and attachments that contain HIPAA-protected information, as well as any CIMRO or client information considered confidential for business purposes.
ShareFile
To send data via ShareFile, CIMRO will provide the client with a hyperlink in an email message. ShareFile will request the client to create a password. Data can be easily uploaded, and once sent, CIMRO receives notification from ShareFile to download the data.
Upon completion of CIMRO’s review of the medical records, the confidential report is uploaded to ShareFile and the client is notified via ShareFile to download the document. ShareFile links expire after 30 days.
Medical Image Sharing
CIMRO uses Nucleus.io, a web-based, vendor neutral medical image management solution. This secure cloud platform allows for secure image sharing via a HIPAA-compliant internet exchange. It is technology created by physician peers in the medical industry who understand medical workflow and the need for ease of use.
Images are uploaded to the Nucleus.io site in two ways – either directly by the client, or by CIMRO personnel from a CD sent to us by the client. Once images have been uploaded, we are able to share them immediately with a Nucleus.io-trained CIMRO physician reviewer, who can instantly view the images via the web browser. This secure, efficient method not only improves workflows but significantly reduces the risk of potential breaches of protected health information due to the nature of sending medical images through the mail.