Data Security and Privacy
We are committed to ensuring that the protected health information entrusted to your organization remains confidential and is not viewed, acquired, or otherwise accessed by anyone, except in response to a specific authorized request from your organization or otherwise as required by law.
Data privacy provisions are a part of all aspects of our operations – from the design of Penelope to the configuration and management of our data centers, our internal administrative controls, staff training, management, and the way we deliver client services.
Athena clients around the globe store confidential client information in Penelope that is protected by data privacy and security legislation.
Within the U.S., the majority of Athena’s clients are Covered Entities under the HIPAA/HITECH ACT for whom Athena is considered a Business Associate. Data may be protected by PIPEDA in Canada, the Privacy Act 1988 in Australia, the E.U. Data Privacy Directive, and / or other statutes.
Our commitment to security extends to the design of Penelope as well. We have built our software in accordance with best practices that help protect your data and keep your system safe from unauthorized access.
Highlights include: role-based security classes, password complexity rules, multi-factor authentication, the ability to lock notes and forms to prevent deletion or alteration, electronic signature functionality, and more. Learn more here!
Athena Software became ISO/IEC 27001:2013 certified in June 2016. This means that our business operations have been assessed and approved by QAS International to meet the ISO/IEC 27001:2013 standards and guidelines with respect to our information security management system.
Ready to know more about security in Penelope?
Makers of Penelope case management software for health, human and social service agencies.
Who We Serve