Frequently asked questions

What is Medicom?

Medicom is the first online service that provides radiology technologists with a secure peer-to-peer network for sending and receiving DICOM images.

Why Medicom?

Unlike VPNs, Medicom is easy to setup. All you need is the email address of the intended recipient to begin sending and receiving patient images.

How is Medicom built with the radiology technologist in mind?

Medicom was built around the core principle that sending and receiving patient information between PACS archives is tedious, especially since most requests are fulfilled by mailing CDs. Medicom offers a variety of notifications that makes radiology technologists' days easier and more productive - in turn, improving the continuation of clinical patient care. Our notifications give radiology technologists the functionality to subscribe to user activity, delivery receipts, and when a study is ready for download.

How does Medicom keep my data secure?

Medicom uses top of the line, end-to-end encryption. Medicom encrypts patient information with a 2048-bit DTLS cypher. This cypher would take trillions of years to hack with current supercomputer technology . In addition, your data is never uploaded or downloaded to our servers, making Medicom fast and HIPAA compliant unlike many vulnerable cloud services.

Is Medicom HIPAA compliant?

Yes. Medicom exceeds HIPAA security standards, and offers a complete real time audit trail for tracking file transmission.

How does Medicom fulfill my requirements for Meaningful Use?

Medicom offers radiology clinics a fast and secure method for transmitting patient studies online to other medical professionals and to patients. Medicom's online network, combined with the audit trail, provides all the functionality and proof of use necessary to comply with Meaningful Use Standard phase II.

How do shared studies interact with my PACS?

PACSs use a specific communication protocol for sending and receiving patient information. All PACSs are required by law to use this standardized language. Medicom's client uses the same language to communicate with PACS. As a result, Medicom can interface with any PACS in less than 5 minutes.

Is Medicom a HIPAA covered entity?

Medicom is not designated as a covered entity under HIPAA and HITECH rules (45 CFR 160.103). Nevertheless, we recognize that our account holders must be fully HIPAA and HITECH compliant. Medicom’s data transfer protocol exceeds HIPAA and HITECH requirements for ePHI, allowing users to be compliant with applicable rules (45 CFR 160.302-.318).

Do you need a BAA to operate Medicom?

Per the Omnibus Final Rule Conduit Exception (45 CFR 160.103 a.i), Medicom does not require a BAA as Medicom does not regularly access ePHI. All Audit Trails are secured by the user’s key, which is unavailable to Medicom. All image transfers pass through peer-to-peer connections between users after Medicom has released the connection.

Why choose Medicom over VPNs and CDs?

Unlike VPNs, Medicom is easy to setup. All you need is the email address of the intended recipient to begin sending and receiving patient images. Medicom is also more secure and provided at a lower cost than both other options.

Why choose Medicom over the cloud?

Cloud systems were not build with the referring physician in mind. Cloud systems require referring physicians to setup organizational accounts, which is laborious and requires a legally binding BAA. Medicom was built to make the referring doctors' lives easier. With Medicom, a referring doctor just has to provide their email address, and they will be able to receive patient information electronically. The system is so easy to use, that physicians refer more to groups that use Medicom!

What else makes Medicom different from a cloud service with an online portal?

Medicom enables files to be sent through a direct connection between two users, eliminating the risk of middle man attacks. Cloud services also require you to store selected studies or your entire PACS archive on the cloud. Medicom eliminates this security vulnerability and hassle by not storing any patient information.