MedHQ is always looking toward innovation, and digital transformation has been a top priority for our team in recent years. In a series of blog posts, we are going to focus on the digital processes MedHQ uses to secure sensitive data, streamline operations, and improve efficiency to benefit our clients. Jake Bartelt, Operations and Implementation Manager, shares how MedHQ is implementing data and software system security solutions to protect both MedHQ’s and clients’ important information. “MedHQ is very innovative, and our leaders empower and encourage us to put security measures in place to keep our clients safe,” said Bartelt. “For any of our development projects, security is never an afterthought; it’s always our first thought.” MedHQ aims to improve security and make processes as smooth and seamless as possible for clients. Our goal is to consolidate every benefit and service offering – background screenings, employee onboarding, time and attendance records – into one space so everything is integrated and user-friendly. Some of the most important systems MedHQ has implemented to secure client data include:
- APIs (application programming interfaces) for data transmission: We have streamlined our routines, protocols, and tools to secure our clients’ data and provide a workflow that improves both productivity and efficiency. This process guarantees more fluid information delivery and an integrated, customized user experience. We’ve built APIs for all of our benefits enrollment – medical, dental, and vision – and each API requires authentication credentials for every transaction. This allows data to be reviewed more closely, as well as shared and distributed more easily. Our secure and powerful software solution streamlines the dozens of processes all employers must track – all in one space.
- Strong passwords and multifactor authentication: Multifactor authentication is an effective way to provide enhanced security and increased confidence when it comes to access to important information. MedHQ strongly enforces security around each employee’s login credentials and requires multifactor authentication, which sends a security code to an employee every time they log in from a different computer or IP address, and flags when a user tries to authenticate in an unusual context. Our process can help prevent some of the most common and successful types of cyberattacks. It’s an extra layer of security, like a bank would use to protect account information, to make sure only authorized users have access to sensitive client data. “We know we’re doing our job when we hear client’s comment about changing their password so often,” said Bartelt. MedHQ’s multifactor authentication combines what you know, who you are, and how you’re logging in. It eases the burden for our clients, allowing them to rest easy knowing that independent CPAs are overseeing their accounting processes and eliminating the temptations of fraud and theft.
- Automatic notifications: We process payroll for over 1500 employees, and payroll is an area that hackers often target. To prevent any tampering, we set up automated notifications to send an alert every time an employee’s direct deposit information is accessed. The employee must log in and verify that all information is accurate.
“We want to educate our clients about the importance of data security,” said Bartelt. “We start by letting clients know what processes we’ve already put in place to secure their data on our end. And we also try to set them up for success by reminding them of security best practices, like logging out of your computer at the end of the day or not sharing passwords with anyone. Security has to be a top priority, and we implement these systems for all the clients we work with for their own protection.” Learn more about MedHQ’s human resources services.