Protections for Medical Records
HIPPA compliance has been built into Gemini Systems and processes.
- Role-Based Authentication: Access to records, files and data is denied unless it is absolutely necessary for the person to perform a specific job function.
- Access Recording and Auditing: Personnel authorized to access a medical record will leave an audit trail for review by supervisory personnel. Any change to a patient’s record will record the date, time and person who made the adjustment.
- Encryption and De-Identification. For transfer or transmission to medical providers, payors / insurers or medical researchers, Gemini will encrypt files and / or withhold information that could identify a record as belonging to a specific individual.
- Data Integrity: Information will be protected from unauthorized access through security controls as well as physical restriction through storage in a protected data center. Accidental deletion or destruction will be prevented through secure data archiving.