PHIMED Technologies Achieves Highest Level of PCI DSS Certification, Enhancing PhyGeneSys Data Security and Compliance

[Shawnee, KS, June 1, 2023] – PHIMED announced today that the company has achieved the highest and most stringent Level 1 compliance of the Payment Card Industry’s (PCI) Data Security Standard (DSS), demonstrating significant investments in security and data protection. This milestone ensures sensitive payment data transmitted through PHIMED’s Patient Portal, Phyportal, is protected to the highest degree. In addition, it assures customers and partners that their data is handled securely.

The PCI DSS is a comprehensive set of standards established by the PCI Security Standards Council to protect cardholder data by all companies that process, store, or transmit credit card information. Achieving Level 1 Service Provider status involved a rigorous third-party audit by a Qualified Security Assessor (QSA) to authenticate adherence to PCI DSS.

Achieving PCI DSS compliance aligns with PHIMED’s strict Health Insurance Portability and Accountability Act (HIPAA) protocol, further reinforcing its commitment to prioritizing security and protecting customer data.

PHIMED’s services help medical practices and billing clients reduce their PCI DSS scope while increasing data security, significantly easing the administrative burden for users. This allows businesses to focus on what matters most – delivering excellent healthcare to their customers – while ensuring they are fully compliant with industry standards.

“Certified PCI DSS compliance, along with our ongoing adherence to HIPAA standards, demonstrates our commitment to data protection and assures our customers and partners that we are vigilant about protecting their data,” said Ashley Kilmartin, Strategic Partnership Manager. “I cannot overemphasize the importance of protecting financial and health data from cyberattacks. While different in many ways, PCI standards and HIPAA share a common goal – safeguarding sensitive data from cybercriminals. It is our responsibility to employ robust safeguards, including employee cybersecurity training and data encryption, to ensure the utmost protection of sensitive information in this rapidly evolving digital landscape.”

Additional information is available by contacting Ashley Kilmartin at 800-909-7240.