How MEDITECH ensures data security for Expanse users

As providers increasingly use mobile technology to access patient records in their EHR, MEDITECH recognizes that the need for strong security protocols remains a priority. 

MEDITECH ensures that EHR data remains accessible only by authorized users through compatibility with a variety of Identity Providers (IdPs) and multi-factor authentication (MFA) vendors, including the Authello solution provided by Forward Advantage and security protocols used by Imprivata devices.

In addition, MEDITECH has chosen the SAML 2.0 standard for Identity Federation, so that any SAML 2.0-compatible IdP can integrate with the Expanse platform.

All credentials are hosted and managed by IdP and MFA partners, and are not kept by MEDITECH, providing an additional layer between user credentials and secure access to the EHR. 

Currently, this list of partners includes ADFS, SecureAuth, Imprivata, Ping Identity, and others. 

MEDITECH recommends that customers consult with their Support Team before selecting an IdP to ensure compatibility. 

For more information on keeping your data secure, visit our Cybersecurity page [customer login required].