MMJ POS Security and HIPAA Compliance

MJ Freeway, PCI, HIPAA and You

Your data is safe and secure

Our state-of-the-art computer servers are protected by biometric locks and 24-hour surveillance. Our product software and infrastructure is updated regularly with the latest security patches. Our network is protected by an enterprise-class firewall that's built to keep your data safe.

There are two major guidelines that influenced the security procedures we put in MJ Freeway. We comply with the recommendations and best practices in both of these standards, but there are also lots of important security elements that are the responsibility of you, the business owner.

Payment Card Industry Data Security Standard (PCI-DSS)

This standard is designed to protect sensitive payment information. Click here to review the official PCI specification.  MJ Freeway is fully PCI compliant.

Health Insurance Portability and Accountability Act of 1996 (HIPAA)

The HIPAA Privacy and Security Rules are designed to protect a patient's personal health information. Click here to learn more about HIPAA.

We encourage you to review these two standards to ensure that the policies and procedures in your business support compliance with PCI and HIPAA. Here's a summary how we support your efforts to be compliant and address the requirements of both of these standards in MJ Freeway:

 Build and Maintain a Secure Environment

MJ Freeway's servers are safely protected by world-class security.  Not only do we have the best firewalls in the business to protect our server from hackers and viruses, we also have security measures in place, like motion sensing cameras, biometric security badges and regular security patrols, to protect the physical computers that house our system. 

In addition, our server is constantly scanned for any potential intrusion, and we are immediately notified of any performance or security issues. We also conduct nightly co-located backups, so that we can quickly restore your system if needed.

 Provide Access Control

MJ Freeway provides you with the ability to restrict access to patient information based on the role of the users that you create.  We require usernames and passwords for each user accessing our system, and require that those passwords are strong and are changed regularly.  In addition, we automatically log you out of MJ Freeway after a period of inactivity, so no one can gain access to your system if you forget to log out when you leave your computer.

 Protect Sensitive Data

In addition to encrypting all information as it is being transmitted, we also encrypt sensitive patient data while it is in storage on our servers.  That means that even if someone was able to gain access to our database, they wouldn't be able to access your patient records.  We also provide patient reports that reference only patient number, not name, so that you can confidently provide information to others in your organization or to government entities without compromising your patient's privacy.

And if you accept credit cards, that information is not stored on our servers at all.  When you swipe the card, the card number is immediately and securely transmitted to your payment processor. It is never stored in our system or on your local computer.

Click here to sign up!