Medflow's security and privacy

Your trust is our top priority.
Discover how we safeguard your data and protect your privacy.

Our commitment to security

At Medflow, we understand the critical nature of healthcare data. Our robust security measures are designed to meet and exceed Australian healthcare data protection standards, ensuring your clinic's and patient's information remains safe and confidential.

Advanced encryption

All data is encrypted at rest and in transit using industry-leading protocols.

Secure authentication

Multi-factor authentication and role-based access control protect your account.

Australian data centers

Your data is stored in secure, Australian-based data centers for optimal protection and compliance.

Regular audits

We conduct frequent security audits and penetration testing to ensure ongoing protection.

Privacy policy highlights

Medflow is committed to protecting your privacy and ensuring transparent data practices. Here are key aspects of our privacy policy:

Data collection and use

We collect only the information necessary to provide our services. This includes clinic details, user accounts, and PBS authority application data. We never sell your personal information to third parties.

Data access and control

You have the right to access, correct, or delete your personal information. We provide tools within the Medflow platform to manage your data preferences and export your information.

Data protection and retention

We implement strict data protection measures and retain your information only for as long as necessary to provide our services or comply with legal obligations.

Compliance and certifications

Medflow adheres to stringent healthcare data protection standards and regulations:

  • Compliant with the Australian Privacy Principles (APPs) under the Privacy Act 1988.
  • Adherence to the Healthcare Identifiers Act 2010 for handling healthcare identifiers.
  • Regular compliance audits to ensure ongoing adherence to healthcare data protection standards.
  • ISO 27001 certified for Information Security Management.
  • Compliance with the Notifiable Data Breaches (NDB) scheme.

Our security practices

Access control

We implement strict access controls, ensuring that only authorized personnel can access sensitive data. All access is logged and regularly audited.

Data encryption

All data is encrypted at rest using AES-256 encryption and in transit using TLS 1.2+. We also use field-level encryption for particularly sensitive data.

Regular security updates

Our systems are regularly updated with the latest security patches to protect against known vulnerabilities.

Incident response plan

We have a comprehensive incident response plan in place to quickly address any potential security issues and notify affected parties as required by law.

Your security is our priority

Experience the peace of mind that comes with Medflow's robust security measures. Join the growing network of Australian specialist clinics trusting us with their data.

Arrange a demo

info@medflow.com.au

© Copyright 2024. All Rights Reserved by Medware Solutions Pty Ltd.

Privacy Policy
Terms and Conditions