We are committed to protecting the privacy of users and patients
As a trusted provider to health information custodians, we are committed to the most stringent approaches to data security and privacy and full compliance with PHIPA regulations.
Select the privacy information you wish to review
Security is part of our DNA
The Ocean Platform was built from the ground up to maximize security and protect privacy. Ocean’s industry-leading security stems from our robust client-side patient encryption technology. All patient data sent to and stored within Ocean is encrypted end-to-end using the industry-standard 256-bit AES (Advanced Encryption Standard), the same technology used by financial institutions and other healthcare institutions.
To guard against any possible breach of personal health information on our Ocean servers, all patient encryption keys are kept secret to Ocean’s end-user clinicians. Encryption keys for patient data are never sent to the Ocean server and are never seen by OceanMD. Since the encryption keys are kept private and stored locally within each individual clinic, no agent outside of the clinic can ever decrypt or read private patient information. Therefore, even if the Ocean server were to be compromised, or the data were to be intercepted en route, no unencrypted patient information would be accessible.
Our client-side encryption architecture provides a protective safeguard for personal health information that is unique in the industry.
Overview of our approach
The Ocean Platform was built from the ground up to maximize security and protect privacy. Ocean’s industry-leading security stems from our robust client-side patient encryption technology. All patient data sent to and stored within Ocean is encrypted end-to-end using the industry-standard 256-bit AES (Advanced Encryption Standard), the same technology used by financial institutions and other healthcare institutions.
To guard against any possible breach of personal health information on our Ocean servers, all patient encryption keys are kept secret to Ocean’s end-user clinicians. Encryption keys for patient data are never sent to the Ocean server and are never seen by OceanMD. Since the encryption keys are kept private and stored locally within each individual clinic, no agent outside of the clinic can ever decrypt or read private patient information. Therefore, even if the Ocean server were to be compromised, or the data were to be intercepted en route, no unencrypted patient information would be accessible.
Our client-side encryption architecture provides a protective safeguard for personal health information that is unique in the industry.
Questions or concerns?
If you have a complaint, question or concern regarding OceanMD’s privacy policies and procedures, please contact:
Privacy Officer, OceanMD
Tel: 1-888-864-8655 ext. 701
Email: privacy.officer (at) oceanmd.com
Address: 4040 – 3080 Yonge St., Toronto, ON, M4N 3N1
