Home  //  Technology  //  Security

Confidentiality of Health Information (HIPAA)

In its capacity as a business associate of healthcare entities, CareEvolve is fully compliant with the applicable requirements of the Federal Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the recent expansions of HIPAA by the Health Information Technology for Economic and Clinical Health Act (HITECH).

These regulations establish a framework for implementation that impacts the privacy and security of Protected Health Information by all health providers, including CareEvolve.  These regulations mandate how CareEvolve handles electronic transactions and code sets, national identifiers, and notification to customers whose unsecured PHI has been breached.

As HIPAA compliance activities advance, our focus remains on CareEvolve’s responsibilities to the patients, doctors and health care organizations we serve to ensure we meet the HIPAA standards, while not negatively impacting our ability to deliver care.

If you have any further questions please contact the CareEvolve HIPAA Project Office directly via email  This e-mail address is being protected from spambots. You need JavaScript enabled to view it. .


Data Transmissions

Most connections to providers are internet transmissions using SSL over HTTPS to transfer Orders and Results with the same degree of security as hardware VPNs but require no networking expertise at the client site to install or maintain.


Hosting Facility

CareEvolve uses Xand ‘s SAS 70 TYPE II Certified hosting services and data center.  Xand's Westchester Data Center, located 30 miles north of New York City, is a custom built state-of-the-art facility with the latest in redundant power, environmental control and networking technology. The facility's design provides for the ideal environment for assuring the performance and reliability of the most mission critical business applications. Some of the infrastructure elements of the Xand Westchester Data Center include:


  • Dual utility power grid
  • Standby Power - Two 1.25 Megawatt Diesel Generators
  • High-Grade Redundant Liebert Air Conditioning
  • Uninterruptible Liebert Power Supplies
  • FM-200 Fire Suppression System
  • Fully Secured Access Control System & Iris Scanning
  • 24 x 7 Operation and Monitoring
  • Redundant Fiber Optic Network Connections
  • Three telecom grids
  • Redundant hardware
  • VPN w/firewall
  • Off site backup locations
  • load balancing technologies from Cisco Systems
  • 99.95% Availability