MedStack is a privacy compliance automation platform that builds, measures and actively manages compliance atop the public cloud. MedStack provides secure, flexible, single-tenant cloud infrastructure tailored to Keel Mind’s unique requirements, with pre-written, code-generated, and real-time auditable privacy policies around complex frameworks such as HIPAA, NIST, PHIPA, PIPEDA, and HITECH. MedStack successfully completed its Service Organization Control (SOC) 2 Type I audit in January 2020, now making it easier and faster for Keel Mind to complete our own SOC 2 audit.
MedStack's Docker platform is built with security guarantees that ensure our platform runs and manages data in the cloud to the highest standards of data security and privacy compliance, such as PIPEDA and PHIPA. These controls include defense-in-depth separation architecture, hypervisor active intrusion-detection, TLS restricted transmissions, 2FA admin access, and more. They are installed, tested, managed and maintained by Medstack’s system for the purposes and use of Keel Mind.
Keel Mind’s application environment, that has been wrapped with all of the technical controls and safeguards of the Medstack platform not only meets the requirements of HIPAA in the US (some of the most stringent healthcare regulations globally) but also meets (and exceeds) the Canadian privacy legislation (PIPEDA) and the various provincial health data privacy regulations (ex. PHIPA, PIPA, PHIA, HIPAA, etc.).