Welcome to the AppointmentCity.com, LLC “AppointmentCity.com” Website. AppointmentCity.com provides access to its Website to the public and to service provider members and has put in place the Security Policies noted below. By placing your practice schedule online, setting appointments, including accessing, viewing, posting, using or downloading materials from this Website, you agree to be bound by these Security Policies. If you do not agree with these Security Policies do not use this Website.
We know that security is crucial to you – we consider security to be a top priority. We devote significant resources to continually optimize our security infrastructure and this includes continuous monitoring and improvement including using best of breed service providers and technology.
Among other security measures, AppointmentCity.com utilizes
Our production environment utilizes cloud computing which provides 24-hour physical security, redundant electrical generators, redundant data center air conditioning, and other backup equipment designed to keep servers continually up and running on a distributed basis.
The cloud network perimeter is protected by firewalls and monitored by intrusion detection systems. In addition, AppointmentCity.com monitors and analyzes firewall logs to proactively identify security threats.
AppointmentCity.com leverages encryption products to protect customer data and communications, including 128-bit SSL Certification and 1024-bit RSA public keys.
Users access AppointmentCity.com only with a valid username and password combination, which is encrypted via SSL while in transmission. An encrypted session ID cookie is used to uniquely identify each user. AppointmentCity.com website username and passwords are to be kept confidential. You may not disclose or share your username or password with any third parties.
Our application security model prevents one AppointmentCity.com user from accessing another’s unrelated users data. This security model is reapplied with every request and enforced for the entire duration of a user session. Administrator rights are given to the primary account member that may access all service providers or users within the same account.
Internal Systems Security
Inside of the perimeter firewalls, the systems are safeguarded by network address translation, port redirection and more.
Operating System Security
AppointmentCity.com enforces tight operating system-level security by using a minimal number of access points to all production servers. We protect all operating system accounts with strong passwords, and production servers do not share a master password.
Whenever possible, database access is controlled at the operating system and database connection level for additional security. Access to production databases is restricted to a limited number of points, and production databases do not share a master password database.
Server Management Security
All data entered into the AppointmentCity.com appointment setting application by a user is owned by that user. AppointmentCity.com utilizes Amazon’s cloud computing as a managed service provider. The Amazon cloud is certified as HIPAA compliant. The AppointmentCity.com programming team provides all system management, maintenance, monitoring, and backups.
Reliability and Backup
All networking components, SSL accelerators, load balancers, Web servers, and application servers are configured in a redundant configuration. The Amazon Service Level Agreement provides for 99.95% availability as well as load balancing across various regions. All customer data is stored on a database served by a database server cluster for redundancy. All customer data is stored on carrier-class disk storage using RAID disks and multiple data paths. All customer data, up to the last committed transaction, is automatically backed up. Backup tapes are moved to secure, fire-resistant, off-site storage on a regular basis.
Our site has security measures in place to protect the loss, misuse and alteration of the information under the control of AppointmentCity.com. We use username and password protection for users. We have a password retrieval process for users who prove they are authorized to obtain their password, via their valid email account. Transactions involving financial data are only processed using secure server technology. All data is stored on Web and database servers that are secured from physical public access. Any use of a robot, bot, spider, or other automatic or manual device or process to monitor, copy, scrape, or otherwise unlawfully access any pages on the AppointmentCity.com websites will be prosecuted to the full extent under the law.
This Security Policy was last Updated in July 2009.