athenahealth® understands its clients’ concerns about securing information. We have implemented security measures for the athenaNet® System ensuring that your medical group or practice and patients are safeguarded.
Applications: athenahealth enforces strict password policies disallowing the use of short or common words and requiring users to change their passwords regularly. In addition, athenahealth has set automatic logoff intervals, set restrictions on access by individual users by day and hour, and provides audit reports on suspicious use.
Systems: Several layers of security protect athenahealth’s servers. Network firewalls block all non-athenaNet® traffic, and intrusion detection systems continuously monitor for security breaches. HIPAA compliant encryption protects the conversation between client browser and athenahealth servers.
Physical Security: athenahealth’s hosting partner provides 24-hour secure facility access at their Internet Data Center.
Policies: athenahealth maintains and enforces strict policies regarding access to and use of private information. The company prides itself on its compliance with all applicable laws, including the Health Insurance Portability and Accountability Act (HIPAA).
"Every month, athenahealth adds something to the solution that is a great innovation, really making my day or my practice life easier."