ISO 27799 Health Informatics

We maintain ISO 27799 Standards for the Computational Health of Medical Establishments, enabling them to keep their Patient Data private, thereby ensuring Patient confidentiality while securing the data and the inter-systems interoperability, while eliminating vulnerabilities.

ISO 27799:2008 specifies a set of detailed controls for managing health information security and provides health information security best practice guidelines. By implementing this International Standard, healthcare organizations and other custodians of health information will be able to ensure a minimum requisite level of security that is appropriate to their organization's circumstances and that will maintain the confidentiality, integrity and availability of personal health information.

ISO 27799:2008 applies to health information in all its aspects, whatever form the information takes (words and numbers, sound recordings, drawings, video and medical images), whatever means are used to store it (printing or writing on paper or electronic storage) and whatever means are used to transmit it (by hand, via fax, over computer networks or by post), as the information must always be appropriately protected.

The keys definition of conforming to the Health Informatics Security Standard are:

  • Confidentiality
  • Integrity
  • Availability