How do I know if this website and our patient's personal
health information (PHI) is secure?
Upper management is involved with day-to-day operations and is able to provide personnel with an understanding of how activities relate to the work of others and the means of reporting exceptions to a higher level within AR Billing Services.
Transaction processing performed on web-based applications is secured through the use of the Secure Socket Layer (SSL) encryption protocol over HTTPS connections. This includes the use of the website file upload page. Traffic directed to HTTP connections for this are redirected to HTTPS connections.
This website, client portal and online payment service(s) are protected by a Comodo Extended Validation Secure Socket Layer (EV-SSL) with up to 256-bit encryption with server grated cryptography (SGC). More about Comodo's SSL certificates; Click Here for informational video. See below for additional SSL security information and our Hacker-Guardian protection.
Cisco intrusion prevention systems (IPS) are utilized to prevent unauthorized intrusion into the production environment. The IPS system provides alerts of attempts at unauthorized intrusion into the production environment. The IPS subscription for the firewall system is kept current.
Firewall systems are in place to screen data flow between external parties and the AR Billing Services’ network. Firewalls are comprised of commercial software products that utilize stateful packet inspection technologies. All inbound and outbound data packets on all interfaces are intercepted and inspected. Packets that are not explicitly permitted by the security policy definition are rejected.
In order to remain compliant with the PCI DSS, AR Billing Services must have a compliant scan every 90 days of our online payment site(s), and a passing Self Assessment Questionnaire (SAQ).
EV SSL & Online Security
"How do you secure my payment information?"
We employ state-of-the-art data encryption to ensure safe and secure transactions to our site.
Your computer and ours agree to transpose whatever we are sending into an unintelligible "hash" of characters, using a technology called SSL. For example:
3048 0241 00C9 18FA CF8D EB2D EFD5 FD37 89B99
Without the information on your computer or ours, no one can understand our encrypted communication. For your safety, please expect anyone who communicates confidential information with you on the Internet to use encryption, the way we do.
Comodo's HackerProof Vulnerability Scanning Service is frequently updated to ensure up to date vulnerability tests against the latest security threats. See our trusted seal at the bottom right of the screen.
What is SSL?
Whenever you communicate with us on our payment pages, a small green and or yellow padlock appears in your browser as a sign that we are now engaging SSL, padlock location will vary with different browsers. You may also notice when entering the secure area of the site, the background of the address bar turns green or yellow. You'll also notice that http:// is replaced by https:// (The "s" stands for 'Secure connection').
How do I know you are a real organization?
Our SSL certificates are issued by a leading certificate authority, Comodo CA. Comodo is Web Trust-compliant, meaning that their business practices and processes have been rigorously audited according to AICPA (American Institute of Certified Public Accountants) guidelines by an independent approved auditor (Ernst & Young).
Comodo High Assurance certificates enable a high level of encryption. They also confirm that a company is a legally accountable organization. To receive a High Assurance SSL Certificate from Comodo, we had to demonstrate to them that we are an existing business, along with our control over the domain you are visiting. When you shop online, you deserve to know who you are interacting with.
A website with a High Assurance SSL Certificate, confirms two essential factors:
To find out more about SSL or Comodo, please visit Instant SSL.