Sending patient data unencrypted (e.g. via email) is like sending a postcard. As it travels across the Internet the content can be read leaving you exposed to HIPAA violations and fines.
* HIPAA's Security Rule (Security Standards for the Protection of Electronic Protected Health Information, found at 45 CFR Part 160 and Part 164, Subparts A and C) requires: ENCRYPTION (A) - 164.312(e)(2)(ii) - You must, "implement a mechanism to encrypt electronic protected health information whenever deemed appropriate." STANDARD 164.312(e)(1) Transmission Security - You must "implement technical security measures to guard against unauthorized access to electronic protected health information that is being transmitted over an electronic communications network.".
If you're not using MediCam to capture patient photos, video or audio ...
There's patient data stored on your phone. What happens if you lose it?
Photos are often auto-uploaded to cloud accounts. There have been breaches in the past.
Patient data often isn't transmitted securely and can be intercepted.
When shared, patient data often isn't stored securely by recipients.
There's no record of consent being recorded. This can lead to trouble if there's dispute later!
There's no record of who has accessed the data.
All data and media is encrypted in the MediCam app before being sent.
Patients can either sign on the screen or record verbal consent.
Access to reports is logged, and is therefore traceable (geo/time/device stamped).
MediCam is super easy to use, just like the camera app on your phone.
Most people will not need to know this but, we also use: CBC mode, password stretching with PBKDF2, password salting, random IV, and encrypt-then-hash HMAC. What you do need to know is that there are no known cases of this encryption having ever been "cracked".
MediCam has undertaken independent Vulnerability Assessment and Penetration Testing (VAPT). See the MediCam Security for more.
"To avoid a dispute over whether or not an image is identifiable, the best approach is to obtain patient consent in all cases before taking clinical photographs, and before using or disclosing them."
International Committee of Medical Journal Editors. Protection of patients’ rights to privacy. BMJ 1995;311:1272.
MediCam is free and will always be free.
We realized that if we charged for the app, doctors may continue to send photos insecurely using the default camera and messaging apps on their phones. This is dangerous and we want to help. Full disclosure, we also have an ulterior motive! We have a "MediCam PRO" version with some advanced features. The free version (MediCam Basic) will suit most people but if you want some advanced features find out more here. We also have enterprise licensing that will allow institutions to easily integrate MediCam into patient medical record systems.