Coral Health Group Information Security & Privacy
We take the security of your information very seriously. Protecting patient privacy is an important part of the patient experience at Coral Health Group.
We will never email you asking for personal security details. We will not disclose your personal information to a third party without your permission.
Please read the information below for components of our information security approach. If you would like additional information please contact us.
Suite 208, 1400 Clyde Avenue
Ottawa, ON, Canada
Access to your personal health information is available to those who need to know to provide care, including: physicians, nurses, technicians, therapists and other Coral Health Group Professionals.
Access to Personal Health Information
Provincial legislation provides access to one’s own personal health record, and Coral Health Group has an obligation to make it available to you, with limited exceptions. Exceptions are made if releasing your information would put you, your treatment or a third party at risk.
Requesting your Personal Health Information
If you are a patient of Coral Health Group, you may request a copy of your personal health record for personal, legal or insurance use or request to view your personal health record.
Insurance Companies or lawyer requiring a patient record
A written request stating what is needed, on whom and contain the patient’s full name, D.O.B, and area of treatment. Please include with the request an original signed Authorization (valid for 90 days from the date of signing) of the patient / client or the substitute decision maker with the paperwork proving such.
Digital signature technology complies with The Electronic Signatures in Global and National Commerce Act (ESIGN), The Personal Information Protection and Electronic Documents Act (PIPEDA) and all Provincial secure electronic signature acts.
A multi-level user ID authentication is used for login and secured communication with a 256-bit SSL encryption protocol. Algorithms generate a certificate or audit-trails for each document, outlining the entire signing process. These certificates automatically store key information including actions taken, time stamps, users ID, and IP addresses.
The infrastructure for our digital signature technology is hosted at Payment Card Industry (PCI) Data Security Standard (DSS) compliant facilities, ensuring that both the infrastructure and administration practices are certified as a Level 1 service providers, the highest standard of assurance offered in the industry.
Video conferencing is offered to securely connect with medical professionals at your convenience.
End-to-end encryption protects all information as it moves between devices and security infrastructure, regardless of the security of Wi-Fi or other connections. Data created and sent using video conferencing technology are secured at server and application levels with encryption.
Canadian user information is stored in secure Canadian data centers.