We support and follow the HIPAA Rules & the Medical Transcription Industry Alliance Code of Ethics, Standards and the Guidelines for assuring confidentiality of the American Health Information Management Association.

  • All our employees sign HIPAA security agreements at the time of recruitment.
  • There are no external drives on our computers like floppy disk drives or CDROM Drives.
  • We do not have printer attached to any computer on network in any of our setups.
  • At XLMT Group we have 24X7 security personnel manning our office.
  • Our computers require passwords to start Windows and another password to access Word files.
  • We have firewalls and antivirus software on all the computers and virus definitions are updated frequently.
  • Any spoiled hard copies of notes and copies of patient schedules are cross-cut shredded on site.
  • Backup of files are kept on servers only at present which are totally protected with software and hardware firewalls.
  • We have a smoke alarm and a fire extinguisher in our office.
  • We currently require all our employees to sign a confidentiality and non-disclosure agreement.
  • We maintain up-to-date contractual agreements with all business parties.
  • We have instituted security measures to protect the security and integrity of protected information according to HIPAA guidelines.
  • All client-related information when using the Internet is handled in secure 128-bit SSL encryption.
  • All the chat delivery and management system is through secure 128-bit SSL encryption and with third party certification (similar to Veri Sign).
  • XLMT Group has administrative procedures in place to guard data integrity, patient confidentiality, and document availability. (Information Access Control and Access Authorization). Like handling of patient lists while using them for production. While coming in or going out of office.
  • To prevent unauthorized use, security devices are employed to prevent theft and/or vandalism of any information stored on our systems.
  • Technical evaluations are performed on a routine basis to make sure all systems meet or exceed specified security requirements.
  • All persons, administrators and transcriptionists, who have access to any sensitive information, patient records, or voice files, etc., have the appropriate clearances and have signed confidentiality agreements.
  • We provide privacy, security, and confidentiality awareness training to our entire workforce. Our compliance decisions are based on sound business practices and meet and exceed HIPAA.