How PIMSY EHR Escaped Heartbleed
What is Heartbleed?
Heartbleed, a hole was discovered in OpenSSL, a security tool used by a large portion of secure websites. This hole has existed for over 2 years and can allow unauthorized users to see snippets of data being transmitted via secure / encrypted methods. Dubbed “Heartbleed”, this vulnerability may have resulted in data being compromised across a large number of online websites, including such heavy hitters as Yahoo. You may have received warning notices from online services (or maybe even your EHR vendor!?)
How do you protect your data?
It’s important for all of us to take precautions when using sites with OpenSSL, until they have fixed the bug. Pay attention to the newsfeeds of secure websites you frequent to determine 1) if they use OpenSSL; and 2) if so, have they have employed a repair? Until they have implemented a fix, discontinue using the site. After the bug has been eliminated from that site, be sure to change your password (changing your password before it’s fixed doesn’t protect you and potentially comprises your password, so make sure the site has employed their solution first). Click here to enter your frequented websites and see if they are vulnerable.
How come PIMSY’s not affected?
Thankfully, we’re not having to reach out to our clients, because PIMSY is safe from Ad Ware, Spy Ware, RSS Feeds and other browser-based vulnerabilities: there is no chance of these threats affecting our customers’ HIPAA-protected data. When we built PIMSY, we had the option of choosing either a browser-based or non-browser-based behavioral health EHR solution. We went with the latter, and one of the biggest reasons is that it increases the security and protection of your data.
Enhanced Security and Reduced Cost
Not only does PIMSY’s structure offer enhanced security, its SaaS (Software-as-a-Solution) architecture also drastically reduces the fees typically associated with EHR (electronic health records). Because SaaS doesn’t require the purchase of additional hardware, EHR costs are reduced to a straightforward monthly fee, while ensuring your data is fully protected. The costs of building, managing, upgrading and supporting an on-site system are eliminated.
PIMSY’s SaaS technology means that we handle all of the data management, maintenance and upgrades. All data is backed up multiple times daily, at two remote facilities, both in and out of state. This not only means you receive a more affordable & secure program that what you could implement in your own office, it also frees up your resources to focus on your clients.
SaaS technology allows us to provide complimentary new features to our clients: about once a quarter, we release a new version, updating PIMSY for our clients seamlessly, automatically and for free. This also allows us to implement changing regulatory requirements as they happen, helping you maintain compliance.
PIMSY’s SaaS architecture provides you 24-hour access to a comprehensive mental health practice management system. Whether you’re at the office, in the field, or working from home, you can access PIMSY in real time: all of your work is immediately accessible within the system with no need for syncing. Ask us for details about using PIMSY on the go.
PIMSY’s SaaS architecture means that our fees are straightforward: you only pay for active users/seats, each month. Activating or inactivating users is simple, allowing you to only pay for the organization’s monthly volume. PIMSY offers the best of both worlds: ease of use comparable to a Browser-based solution, but with the enhanced security and HIPAA compliance of a hosted solution. Ready to learn more? Click here to watch a free online video demo, and contact us with questions. We’d love to show you how our mental health practice management system can enhance your organization.