IT Solutions

Technology Management
Security, Privacy, and HIPAA

Custom Development

Astute specializes in the development of Internet and multimedia solutions. We have developed robust applications for a wide variety of medical societies such as the American Society of Clinical Oncology (ASCO), American Society of Gastrointestinal Endoscopy (ASGE), and over twenty industry leading organizations.

Astute strategically integrates streaming media, case studies, Point/Counterpoint, 3-D animations, and other content with data collection applications that enable our clients to develop lasting relationships with their target audience. A primary example of our expertise is showcased in the HealthAnswersCE Continuing Education Portal and in the Gastroenterological Teaching Project Web site. In addition, we have successfully enabled organizations to translate offline programs such as compliance and persistency programs, abstract submission, meeting planning and registration, and registration into far-reaching, cost-effective online offerings. In today's ever-changing environment, we develop focused Internet and multimedia solutions designed to promote our clients' message and relationship with their target audience through the power and flexibility of the Internet.

Technology Management

Astute offers comprehensive technology management services to small and mid-size organizations as well as to the largest pharmaceutical companies around world. Our expertise and competitive pricing structure enables our clients to develop powerful, yet measured technology strategies for their organization. With Astute's technology management services, clients enjoy:

State-of-the-art networks with high-speed access to the Internet to support their organization's Web site(s), email, and critical information without owning a server or hiring a network administrator
Information that is safe and secure behind industry-leading firewalls, identity authentication, strong encryption technology, and enterprise-strength backup systems
Consolidated network and application systems
A technology infrastructure that grows with the organization
Freedom to concentrate on core business activities rather than technology-related concerns

Astute and its dedicated IT staff have been providing these services for over six years. Our primary services include:

Provision and maintenance of servers for application and web hosting, email, and file storage
Custom application development and support
Liaison between the client and their other vendors
Advocacy and advisory for the client to other technical providers
State-of-the-art computer facilities
Certified IT professionals in multiple disciplines
Technical consultation to existing IT staff
Primary organizational IT support
Fixed rate billing on a monthly, quarterly or yearly basis

Security, Privacy and HIPAA

The security and privacy of our clients' data is of the utmost importance to us.

Security consists of the measures that one must take to protect information and resources within their possession from both internal and external threats.

Privacy is the client's view of the way their information is treated, controlled, and protected. Privacy also includes protecting the sanctity of patient's data. It requires a patient-directed disclosure and audit.

We provide the necessary monitoring, management, technical expertise, security, and support necessary to assure client privacy while at the same time assuring reliability and the highest level of performance for our clients' web and IT solutions. To achieve this, we address privacy and security measures in three ways: environmental, technical and administrative.

Environmental

We house our clients' data and communications in a state-of-the-art, off-site facility (Equinix, Inc).

Utilization of this world-class center allows us to provide the following environmental protections:

Redundant subsystems, including multiple communication fiber trunks from multiple sources to provide reliable Internet service
Twenty-four hour security patrols and surveillance monitors, as well as internal and external motion detectors
Diesel generator for electrical backup to public utilities
Biometric identification entrance and exit devices
Automatic smoke detection and fire suppression systems
Deadman access (after positive identification and security clearance, entry is controlled through a passageway that is door locked at both ends.)
HVC controlled by massive roof mounted heating, air conditioning, and humidity control units
Server racks reinforced against seismic anomalies

In addition, we continue to install the latest in backup and recovery methods and follow the industry standard for backup, off-site storage, and recovery of information. Additionally, we record fifteen-minute interval snapshots of each client's dynamic data to ensure rapid recovery from unforeseen events.

Technical

We have gone to great lengths to assure that our clients receive maximum exposure to the World Wide Web audience, while at the same time balancing their need for a secure environment that will protect their data from unauthorized users. Steps taken include:

Encryption of data
Supplying SSL certificates for clients with e-commerce on their sites

Monitoring all unauthorized access attempts through both hardware and software methodologies:

Firewalls
Anti-virus software
VPN and network tunneling
Physically separating data (individual specific data from clinical information)
Password protected systems
Digital signatures
Commissioning of 3rd party firms to search and identify potential vulnerabilities

Administrative

All our employees sign non-disclosure agreements, which include the requirement that employees protect the intellectual and physical assets as well as the content of all our clients. Often, we require our vendors to sign a non-disclosure agreement to help protect the sanctity of our clients' activities and data. We continually train our employees in the most effective ways to protect our clients' information, as well as the most recent regulations concerning privacy and security.

HIPAA

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) lays out very particular rules and accountabilities concerning the privacy and security of individual identifiable clinical data. Our security and privacy measures provide a solid foundation to meet HIPAA regulations. We view ourselves as a critical part of the 'chain-of-trust' between caregiver and patient.




products Encore™ Conference.CAST™ > the capture > features > options Net.SCORE™ > options > white paper DVD Creation Public Service Announcement (PSA) services > web design > IT solutions > virtual meeting services > client services	IT Solutions Technology Management Security, Privacy, and HIPAA Custom Development Astute specializes in the development of Internet and multimedia solutions. We have developed robust applications for a wide variety of medical societies such as the American Society of Clinical Oncology (ASCO), American Society of Gastrointestinal Endoscopy (ASGE), and over twenty industry leading organizations. Astute strategically integrates streaming media, case studies, Point/Counterpoint, 3-D animations, and other content with data collection applications that enable our clients to develop lasting relationships with their target audience. A primary example of our expertise is showcased in the HealthAnswersCE Continuing Education Portal and in the Gastroenterological Teaching Project Web site. In addition, we have successfully enabled organizations to translate offline programs such as compliance and persistency programs, abstract submission, meeting planning and registration, and registration into far-reaching, cost-effective online offerings. In today's ever-changing environment, we develop focused Internet and multimedia solutions designed to promote our clients' message and relationship with their target audience through the power and flexibility of the Internet. Technology Management Astute offers comprehensive technology management services to small and mid-size organizations as well as to the largest pharmaceutical companies around world. Our expertise and competitive pricing structure enables our clients to develop powerful, yet measured technology strategies for their organization. With Astute's technology management services, clients enjoy: State-of-the-art networks with high-speed access to the Internet to support their organization's Web site(s), email, and critical information without owning a server or hiring a network administrator Information that is safe and secure behind industry-leading firewalls, identity authentication, strong encryption technology, and enterprise-strength backup systems Consolidated network and application systems A technology infrastructure that grows with the organization Freedom to concentrate on core business activities rather than technology-related concerns Astute and its dedicated IT staff have been providing these services for over six years. Our primary services include: Provision and maintenance of servers for application and web hosting, email, and file storage Custom application development and support Liaison between the client and their other vendors Advocacy and advisory for the client to other technical providers State-of-the-art computer facilities Certified IT professionals in multiple disciplines Technical consultation to existing IT staff Primary organizational IT support Fixed rate billing on a monthly, quarterly or yearly basis Security, Privacy and HIPAA The security and privacy of our clients' data is of the utmost importance to us. Security consists of the measures that one must take to protect information and resources within their possession from both internal and external threats. Privacy is the client's view of the way their information is treated, controlled, and protected. Privacy also includes protecting the sanctity of patient's data. It requires a patient-directed disclosure and audit. We provide the necessary monitoring, management, technical expertise, security, and support necessary to assure client privacy while at the same time assuring reliability and the highest level of performance for our clients' web and IT solutions. To achieve this, we address privacy and security measures in three ways: environmental, technical and administrative. Environmental We house our clients' data and communications in a state-of-the-art, off-site facility (Equinix, Inc). Utilization of this world-class center allows us to provide the following environmental protections: Redundant subsystems, including multiple communication fiber trunks from multiple sources to provide reliable Internet service Twenty-four hour security patrols and surveillance monitors, as well as internal and external motion detectors Diesel generator for electrical backup to public utilities Biometric identification entrance and exit devices Automatic smoke detection and fire suppression systems Deadman access (after positive identification and security clearance, entry is controlled through a passageway that is door locked at both ends.) HVC controlled by massive roof mounted heating, air conditioning, and humidity control units Server racks reinforced against seismic anomalies In addition, we continue to install the latest in backup and recovery methods and follow the industry standard for backup, off-site storage, and recovery of information. Additionally, we record fifteen-minute interval snapshots of each client's dynamic data to ensure rapid recovery from unforeseen events. Technical We have gone to great lengths to assure that our clients receive maximum exposure to the World Wide Web audience, while at the same time balancing their need for a secure environment that will protect their data from unauthorized users. Steps taken include: Encryption of data Supplying SSL certificates for clients with e-commerce on their sites Monitoring all unauthorized access attempts through both hardware and software methodologies: Firewalls Anti-virus software VPN and network tunneling Physically separating data (individual specific data from clinical information) Password protected systems Digital signatures Commissioning of 3rd party firms to search and identify potential vulnerabilities Administrative All our employees sign non-disclosure agreements, which include the requirement that employees protect the intellectual and physical assets as well as the content of all our clients. Often, we require our vendors to sign a non-disclosure agreement to help protect the sanctity of our clients' activities and data. We continually train our employees in the most effective ways to protect our clients' information, as well as the most recent regulations concerning privacy and security. HIPAA The Health Insurance Portability and Accountability Act of 1996 (HIPAA) lays out very particular rules and accountabilities concerning the privacy and security of individual identifiable clinical data. Our security and privacy measures provide a solid foundation to meet HIPAA regulations. We view ourselves as a critical part of the 'chain-of-trust' between caregiver and patient. back to top