PAMFOnline Security Measures

Protecting your personal health information is a top priority at PAMF. In addition to applying stringent privacy practices that govern access and use of information by PAMF physicians and staff, we have implemented several security features and methods to protect your data in our information systems, including the following:

• Encryption: We use 128-bit Secure Socket Layer to encrypt the communication from your Web browser to our secure Web server.
• Dedicated Web server for PAMFOnline: We separate the Web server and the electronic health record (EHR) machines. In the unlikely event that the Web server is compromised, no health information would be exposed because it is not stored on the Web server. Patient information is stored only in the EHR, behind a firewall.
• No caching on the client side: We disable caching of data in the browser and force the Web pages to expire immediately. This prevents a follow-on user from viewing pages that you had previously viewed while using PAMFOnline.
• Firewall: Personal health information is stored in the secure EHR, protected from the Internet by a firewall.
• Session timeout: After a period of inactivity, the logon session will time out.
• Monitoring: We constantly monitor the Web server for evidence of unauthorized break-in attempts.
• PAMF has a layered approach to IT Security. This means that there are many layers of security in place to prevent an unintentional release of your information from occuring.