Korean healthcare IT company ezCaretech has been awarded two certifications from independent auditors LRQA, verifying its information security management system (ISMS) will help keep patients’ data safe.
ezCaretech has been certified against the International Organisation for Standardisation’s ISO 27001 and CSA STAR which demonstrates that the company’s cloud computing networks and software effectively manage security risks.
Wonryang Wee, CEO at ezCaretech said: “Our hospital information system solutions are designed so medical staff can access patient information easily, at any time and from anywhere. This gives them a better understanding of a patient’s medical history and current condition which helps them make informed decisions. It is critical that this information can be accessed without risk to patient data being exposed which is why information security is of utmost priority to us and our customers. These certifications show that we have the highest levels of security policy in place and customers can trust our systems.”
Certification to ISO 27001 means a company has implemented systems, controls and procedures to protect the information it holds, minimise risk and ensure information can be recovered quickly even in the event of a security breach or natural disaster.
“ISO 27001 is a certification of best practice for information security management systems. An organisation that is certified has been through a rigorous independent audit process and demonstrated its ability to meet the stringent requirements of this standard,” said Rob Acker, Technical Manager, Information Security and Business Continuity.
CSA STAR certification shows potential customers that ezCaretech’s cloud-based hospital information system is reliable and trustworthy, offering a competitive advantage to the company.
“As well as increasing our footprint in the domestic market, we also aim to expand overseas. A certified ISMS is a distinct advantage,” continued Wonryang Wee. “We decided to choose a global, independent auditing business that really understood our industry and the process we’ve been through to reach certification has helped us to develop a security management framework that works for our business in practice not just in theory.”