console.log( 'Code is Poetry' );
<!-- Google tag (gtag.js) -->
<script async src="https://www.googletagmanager.com/gtag/js?id=G-4G83BRBXYR">
</script>
<script>
  window.dataLayer = window.dataLayer || [];
  function gtag(){dataLayer.push(arguments);}
  gtag('js', new Date());

  gtag('config', 'G-4G83BRBXYR');
</script>

Data Security

Our Commitment to Security đź”’

Safeguarding Your Health Data

At TeleWeCure Inc., we understand that your health information is among your most sensitive and private data. As a leading provider of telerehabilitation services, our commitment to safeguarding your privacy and security is our highest priority and is embedded in every part of our service. This page details the comprehensive measures we take to protect your data.

1. Governance, Compliance, and Certification

We are committed to meeting and exceeding the most rigorous security and privacy standards applicable to health data in North America.

Compliance Standard Description
PIPEDA (Canada) We comply with the federal Personal Information Protection and Electronic Documents Act, ensuring transparency and appropriate safeguards for all personal information, regardless of where the data is processed or stored.
PHIPA (Ontario) We comply with the provincial Personal Health Information Protection Act, which governs the collection, use, and disclosure of personal health information in Ontario, including ensuring appropriate safeguards for data transferred outside of Ontario.
HIPAA (USA) We adhere to the requirements of the Health Insurance Portability and Accountability Act, specifically its Privacy and Security Rules, to protect all Protected Health Information (PHI).

Certified Excellence:

Our security management systems are independently audited and certified under ISO/IEC 27001, the world’s leading standard for Information Security Management Systems (ISMS). This certification demonstrates our systematic and ongoing approach to managing the security of company and customer information.

2. State-of-the-Art Technical Safeguards

We implement robust technical measures to protect your data at every stage.

  • Encryption In Transit: All data transmitted between your device and our servers—including live video, chat, and documentation—is secured using industry-standard TLS/SSL encryption. This prevents unauthorized interception of data.
  • Encryption At Rest: All stored data, including clinical notes, records, and personal identifiers, is protected by AES-256 encryption while stored in our databases and files, making it unreadable without the correct decryption keys.
  • Hosting Security: We rely on world-class, independently audited cloud infrastructure that maintains continuous security monitoring, robust physical security, and strict controls designed to meet the highest regulatory standards for data confidentiality and integrity.
  • System Monitoring: Our systems are monitored 24/7 for suspicious activity, intrusions, and vulnerabilities. We employ advanced tools to detect and automatically respond to potential threats in real time.
TeleWeCure ISO-27001

3. Operational and Personnel Security

Security is a shared responsibility, and we ensure our staff and procedures uphold the highest standards.

  • Access Control: Access to sensitive patient data is strictly limited to authorized personnel only, based on the Principle of Least Privilege. This ensures staff can only access the minimum information required to perform their specific job function.
  • Staff Training: All employees receive mandatory and ongoing training on security policies, privacy regulations (PIPEDA, PHIPA, HIPAA), and secure data handling procedures.
  • Confidentiality Agreements: All personnel are bound by strict confidentiality and non-disclosure agreements.

4. Data Residency and Availability

  • Data Location: Your data is stored and processed within secure, independently audited data centers located in the United States. We ensure that your data is protected by safeguards that meet or exceed the requirements of Canadian legislation, including PIPEDA and PHIPA, regardless of its storage location.
  • System Redundancy and Recovery: Our infrastructure is designed for high availability and resilience. We maintain frequent, encrypted backups and have a comprehensive Disaster Recovery Plan to ensure your access to essential telerehabilitation services is uninterrupted.

5. Incident Response

Despite all precautions, we are prepared for the unlikely event of a security incident. We maintain a formal, tested Incident Response Plan to ensure we can promptly:

  • Contain any unauthorized access.
  • Investigate the scope and cause of the incident.
  • Notify affected individuals and regulatory bodies in accordance with legal requirements (e.g., PIPEDA, PHIPA, HIPAA breach notification rules).

Questions?

While we take extensive measures to protect your data, security is a partnership. We encourage you to use strong, unique passwords for your account and maintain the security of your own devices.

If you have any questions about our security practices, or if you believe you have found a potential vulnerability, please send an email to our support team at support@telewecure.com. Please include "Security Question" in the subject line to route it to the security officer.

For more detailed information on data governance, including the specific implications of storing data in the US, please refer to:

Follow us

Facebook-f Linkedin-in Youtube Instagram

share us

Copyright © 2021-2024 TeleWeCure Inc. All Rights Reserved.