ClearDATA CPO to Highlight Best Practices of Securing PHI in the Cloud

Phoenix, AZ, April 30, 2012 – – ClearDATA Networks, Inc., the leading healthcare cloud computing platform and service provider, today announced that its co-founder and Chief Privacy Officer Chris Bowen will be a featured speaker on the topic of “PHI and Cloud Computing” at the 21^st Annual WEDI National Conference being held May 1-3, 2012 in Tampa, Florida.  Healthcare leaders from across the nation attend the WEDI (Workgroup for Electronic Data Interchange) Conference to learn about and address issues of primary concern to the healthcare industry.

“Securing data and patient information is a top priority in our industry and many are concerned of potential security risks associated with moving PHI to the cloud,” said Chris Bowen, Chief Privacy Officer for ClearDATA Networks, Inc. “While safeguarding PHI in the cloud does introduce new security issues, it can also reduce or eliminate many security threats. Done properly, PHI in the cloud can effectively be more secure, and definitely more cost effective, than storing PHI onsite for a healthcare provider.”

WEDI Conference Session Title: PHI and Cloud Computing

Wednesday, May 2, 2012 from 3:25 PM – 4:55 PM

Grand Hyatt Hotel Tampa Bay, White Ibis Room

Abstract: Cloud Computing has become a popular choice to move/store data while leveraging speed and cost effectiveness. However, covered entities, business associates and all others responsible to keep sensitive date (including PHI) protected and secure have a lot to consider when moving into the cloud environment. Vendors are offering cloud technology; the federal government is mandating its business to move towards the cloud and NIST has been releasing Special Publications regarding cloud computing and security.

Speakers:

Lesley Berkeyheiser, The Clayton Group, Moderator

Lola Jordan, Companion Data Services

Chris Bowen, ClearDATA.net

Chris Bowen Bio

Mr. Bowen is a managed services and experienced operations and compliance executive providing privacy and security guidance to large IDNs, software companies, and healthcare executives. He is one of only 2,593 Certified Information Privacy Professionals in the United States (CIPP/US) by the International Association of Privacy Professionals, and one of only 621 worldwide with the CIPP/IT certification. He previously founded DirectClarity, a healthcare application services and cloud information security company, that was acquired by ClearDATA, which still provides application and consulting services to large hospitals and foundations throughout the US under his direction. As a co-founder of ClearDATA Networks, Mr. Bowen shared the vision of providing secure, HIPAA compliant cloud hosting services to the healthcare industry and merged his company with ClearDATA.

Formerly Chris was actively involved in public policy and politics at the national and state levels. After successfully running his first congressional campaign at age 24, he authored and shepherded passage of Arizona’s Anatomical Gift Act of 1996, and later completed his MBA while serving as a top advisor to the Arizona Speaker of the House. While employed by the House he was appointed by the Speaker to represent him on the Arizona Internet Privacy Committee, and sub committee on voter privacy.

About the Workgroup for Electronic Data Interchange (WEDI)

To provide multi-stakeholder leadership and guidance to the healthcare industry on how to use and leverage the industry’s collective technology, knowledge, expertise and information resources to improve the administrative efficiency, quality and cost effectiveness of healthcare information.  For more information, visit: http://www.wedi.org/index.shtml.

About ClearDATA Networks

ClearDATA is the market leader for cloud computing and information security services for healthcare providers, software vendors and VARs.  ClearDATA’s services enable providers to fully automate and securely manage healthcare medical records, applications, IT infrastructure and digital storage. The company provides HITECH HIPAA-compliant cloud and hosting infrastructure and managed services, offsite backup and disaster recovery, medical image archiving, information security and world-class support. The company offers HIPAA Security Risk and Remediation services through its U.S. Healthcare Compliance division to the healthcare industry in order to ensure that they meet the rigorous standards of security required for protected health information to demonstrate Meaningful Use. For more information, call 602-635-4000, email: sales@cleardata.net or visit: www.cleardata.net.

Services Help Providers Meet Meaningful Use Requirements and RECs Achieve Sustainability

Phoenix, AZ, April, 18, 2012 – – ClearDATA Networks, Inc., the leading healthcare cloud computing platform and service provider, and Dakota State University’s  HealthPOINT, the South Dakota Regional Extension Center for Health IT (REC) , today announced that they have jointly provided HIPAA Security Risk Analysis (SRA) and other information security services for 44 healthcare provider locations of organizations belonging to the Community HealthCare Association of the Dakotas (CHAD).  The companies also offer additional information security services such as Perimeter Security Verification of the client’s security posture as well as a detailed security analysis, complete remediation plan, and executive report appropriate for an executive and/or board meeting.

A HIPAA Security Risk Analysis (SRA) is a Stage 1 Meaningful Use Core #15 requirement for healthcare organizations to qualify for incentive dollars in 2012. Organizations interested in learning more about the HIPAA SRA requirements can email: SRA@cleardata.net.

The ClearDATA REC Partner Program helps RECs achieve Meaningful Use and sustainable revenue by providing cloud hosting services, backup, disaster recovery, security risk analysis (SRA) and remediation services to the healthcare providers in their respective states.  ClearDATA has performed hundreds of SRAs to healthcare organizations across the U.S..

“We’re excited to partner with HealthPOINT to provide the SRA services for the Community HealthCare Association of the Dakotas in order to help them achieve Meaningful Use,” said David Bean, executive vice president of sales and marketing for ClearDATA Networks, Inc.  “Our combined expertise in cloud computing and information security services deliver maximum data protection and patient privacy for healthcare organizations according to HIPAA Security Rule Standards. “

“The Community HealthCare Association of the Dakotas provides excellent healthcare services to the public throughout the Dakotas and recognizes the importance of securing patient information and privacy,” says Dan Friedrich, director for HealthPOINT, South Dakota’s Regional Extension Center.  “Dakota State University  is pleased to partner with ClearDATA to help CHAD and other healthcare organizations utilize advanced technology solutions that enable them to improve their productivity and more effectively serve the community.”

About the ClearDATA HIPAA Security Risk Analysis

The ClearDATA HIPAA Security Risk Analysis service measures the IT-related risks associated with key regulations and standards including the Healthcare Insurance Portability and Accountability Act (HIPAA), the Health Information Technology for Economic and Clinical Health (HITECH) Act, Payment Card Industry Data Security Standards (PCI DSS), Sarbanes Oxley Act (SOX), and SAS 70. It focuses specifically on the three areas of 45 CFR 164.308(a)(1); namely, the Administrative, Physical and Technical safeguards. Each of these areas is analyzed to verify that they are: a) sufficient to be effective, b) currently operational, c) applicable for the organization and d) represent applicable compliance programs.

Additionally, the SRA service can review the organization’s vendor relationships and Business Associate Agreements, and if necessary, conduct an SRA for the Business Associate.

About HealthPOINT, the South Dakota Regional Extension Center

HealthPOINT, as a department of Dakota State University, is South Dakota’s Regional Extension Center. As a federally designated health information technology resource and support center for all South Dakota healthcare providers, HealthPOINT focuses on an action-based approach to propel providers in adopting electronic health record systems. HealthPOINT leverages Dakota State University’s strengths in Health Information Management and Information Assurance academic programs to provide high quality, cost effective services to South Dakota providers. For more information, contact Dan Friedrich, Director for HealthPOINT at 605-256-5555 or visit www.healthpoint.dsu.edu.

About ClearDATA Networks

ClearDATA is the market leader for cloud computing and information security services for healthcare providers, software vendors and VARs.  ClearDATA’s services enable providers to fully automate and securely manage healthcare medical records, applications, IT infrastructure and digital storage. The company provides HITECH HIPAA-compliant cloud and hosting infrastructure and managed services, offsite backup and disaster recovery, medical image archiving, information security and world-class support. The company offers HIPAA Security Risk and Remediation services through its U.S. Healthcare Compliance division to the healthcare industry in order to ensure that they meet the rigorous standards of security required for protected health information to demonstrate Meaningful Use. For more information, call 602-635-4000, email: sales@cleardata.net or visit: www.cleardata.net.

Ingersoll Rand Security Technologies and The CBORD Group enable students and staff to use personal cellphones as credentials to gain access to dorms, academic buildings and administrative offices

CARMEL, IN – March 21, 2012 – Ingersoll Rand Security Technologies, a leading global provider of security and safety solutions and manufacturer of contactless smart credentials and readers, and The CBORD Group, Inc., the leading provider of campus card and integrated security solutions to colleges and universities, are conducting the most comprehensive access control Near Field Communications (NFC) trial in the North American marketplace to date. Since November 2011, Villanova University students and staff have been using the aptiQmobile™ web-based service from Ingersoll Rand Security Technologies along with NFC and their own personal smartphones as their credential to access dormitories, academic buildings and administration offices. The NFC credential seamlessly integrates with Villanova’s CS Gold^® campus card system from CBORD^®.

To enter buildings, students simply open the aptiQmobile™ app and tap their phone to the smart reader on the wall in the same way that they would present their Wildcard campus ID badge.

“Today’s students are so technologically advanced that it is second nature for them to put everything on their phones and, most of the time, it’s already in their hands while walking across campus,” explains Kathy Gallagher, Villanova director of card services. “We want to provide our students the utmost in convenience and flexibility through the technology we offer. It’s easier for students to use an app on their phone versus digging for their card.”

Three research projects were conducted among 1300 students and decision makers across 980 U.S. colleges and universities, both public and private, 2-year and 4-year, during May of 2011. Researchers found that two-thirds of American college students are interested in using their mobile phone in place of an ID card. Students feel they are less likely to lose their phone than an ID card and they know that ID cards are shared; phones aren’t. In fact, people will almost always notice that their phone is lost faster than noticing a card is missing. Using a phone as a credential also offers the ability to remotely erase credential data in case it’s lost or stolen, providing an extra layer of security.  In a survey among the students in the Villanova trial, over 70 percent stated they would prefer to use their phone instead of a badge to enter buildings.

The enhanced convenience of using smartphones instead of badges extends to administrators in charge of access control systems. Rather than having to print physical ID badges for each student at enrollment time, a mobile ‘key’ can be issued online by the administrator directly to the student’s phone at any time, saving the university staff time, administrative costs and the expense of printers, ink, card inventory and other needed supplies.

“Using smart phones as badges saves time that can be better spent on other issues,” emphasizes John Bonass, Villanova systems manager. “Assigning the credential to the students’ phone takes less work than printing and delivering a badge, and since students are very protective of their phones, this should lead to a greatly reduced replacement rate. If a phone is lost or broken, a new ID can be reissued to the new phone without even having the students come to our office.”

“CBORD is committed to providing leading technology solutions that improve the quality of university life, solving practical problems, enhancing safety and lowering costs at the same time,” commented Max Steinhardt, COO of CBORD.  “In partnership with Villanova and Ingersoll Rand, this smart phone approach to the student credential is a way to make the system better support the way the university community lives and works day to day.”

“An added benefit of the aptiQmobile NFC solution is that the organization may not need to change out their locks to use it when it becomes commercially available,” adds Jeremy Earles, Ingersoll Rand Security Technologies product marketing manager, readers and credentials. “If smart-enabled AD-Series locks or XceedID smart readers are already installed, it’s simply a matter of downloading the credentials to the students’ phones and they are ready to go. If non-smart access technology is being used, multi-technology readers can be installed to help ease into the transition by reading both the ID badges and the smartphones.”

In the United States, more than 40 million phones are expected to be NFC-enabled by the end of 2012 and according to a report by Market Research, nearly half of all mobile phones will be NFC enabled by 2016.

About Ingersoll Rand Security Technologies

Ingersoll Rand (NYSE:IR) advances the quality of life by creating and sustaining safe, comfortable and efficient environments. Our people and our family of brands—including Club Car®, Ingersoll Rand®, Schlage®, Thermo King® and Trane® —work together to enhance the quality and comfort of air in homes and buildings, transport and protect food and perishables, secure homes and commercial properties, and increase industrial productivity and efficiency. Schlage is the leader in security devices, trusted for 90 years, spanning both the commercial and residential markets. Ingersoll Rand is a $14 billion global business committed to a world of sustainable progress and enduring results. For more information, visit ingersollrand.com or schlage.com.

About The CBORD Group, Inc.

The CBORD Group serves colleges and universities, healthcare facilities, corporations, senior living facilities, supermarkets, and a host of other market segments. CBORD’s products are used in access control, integrated security, campus ID card privilege control, housing services, food service, catering, nutrition services, online ordering, and other institution-wide activities. Founded in 1975, The CBORD Group serves more than 6,000 clients in the U.S., Canada, Europe, South Africa, the Middle East, New Zealand, and Australia. To learn more about CBORD, visit www.cbord.com.

The CBORD Group, Inc. operates as a unit of Roper Industries, Inc. (NYSE: ROP). Roper Industries is a market-driven, diversified growth company and is a constituent of the Fortune 1000, the Russell 1000, and the S&P 500 indices. Roper provides engineered products and solutions for global niche markets, including water, energy, radio frequency, and research/medical applications.

Facilities presently using AD-Series locks and/or XceedID smart card readers can use NFC-enabled smart phones as credentials

CARMEL, IN – March 19, 2012 – Ingersoll Rand Security Technologies, a leading global provider of security and safety solutions and manufacturer of contactless smart credentials and readers, announced that all existing 13.56 MHz smart versions of the AD-Series locks and XceedID smart card readers are already compatible with the new aptiQmobile™ NFC technology. The popular Schlage AD-Series locks will let people use aptiQmobile™ web-based service and their own Near Field Communications (NFC-enabled)-smartphones as their credential to allow secure access into their facilities. To gain entrance, they simply open the aptiQmobile™ app and tap their phone to the AD-Series lock on the door. Those with XceedID smart card readers will be able to do likewise. No new readers for either the AD-Series or XceedID solutions are required.

When the Schlage AD-Series lock was introduced back in September of 2009 Ingersoll Rand Security Technologies stated that “security professionals can now choose the specific electronic lock they need with full confidence that it can later be upgraded without ever taking it off the door…(the) locks provide options to truly customize the access control solution, quickly migrate to future needs and provide seamless integration, now and later, at a lower cost of ownership.”

“Already NFC-ready, the AD-Series is living up to its promise,” emphasizes Jeremy Earles, Ingersoll Rand Security Technologies product marketing manager, readers and credentials. “It was built with the future in mind and that future has arrived with the ability to use a mobile phone for access control.”

Likewise, all XceedID smart card readers are also compatible with the NFC solution. XceedID smart card readers are integral features in a wide range of smart card-based solutions from a variety of manufacturers, including Access Smart, CBORD, Heartland Campus Solutions, SCM, idOnDemand, Solero Systems, Screencheck, ISG, NEDAP, ID Group, LSI, Card Quest, One Source, Gemalto, Cypress Computer Systems and Vision Database Systems (VDC). For customers that use products from these companies featuring the XceedID smart reader, they can use their current smart card readers to leverage NFC-based access control.

According to Earles, “Organizations are looking to future-proof their investments and NFC is one of the key technologies on the horizon. Using aptiQmobile on their NFC-enabled smartphones in conjunction with AD-Series locks or XceedID smart card readers, these organizations can be assured that their systems are flexible and their investments are solid.”

NFC technology is now being added to a growing number of mobile handsets to enable access control as well as many other applications. More than 40 million phones are expected to be NFC-enabled by the end of 2012 and over half the phones sold in 2015 will be NFC-capable.

At the ISC West Exposition, to be held in Las Vegas March 28-30, attendees visiting the Ingersoll Rand Security Technologies booth 16053 will see a smartphone with the aptiQmobile app being used just like a smart card (or proximity card) to open a locked door. They will also learn about a successful pilot program using aptiQmobile at a major East Coast university.

About Ingersoll Rand Security Technologies

Ingersoll Rand (NYSE:IR) is a world leader in creating and sustaining safe, comfortable and efficient environments in commercial, residential and industrial markets. Our people and our family of brands—including Club Car®, Ingersoll Rand®, Schlage®, Thermo King® and Trane® —work together to enhance the quality and comfort of air in homes and buildings, transport and protect food and perishables, secure homes and commercial properties, and increase industrial productivity and efficiency. Ingersoll Rand Security Technologies’ market-leading products include electronic and biometric access control systems; time-and-attendance and personnel scheduling systems; mechanical locks; portable security; door closers, exit devices, architectural hardware, and steel doors and frames; and other technologies and services for global security markets.  Ingersoll Rand is a $14 billion global business committed to sustainable business practices within our company and for our customers. For more information, visit www.ingersollrand.com or www.securitytechnologies.ingersollrand.com.

CARMEL, IN, March 15, 2011– Ingersoll Rand Security Technologies, a leading global provider of security and safety solutions and manufacturer of contactless smart credentials and readers, introduced its new aptiQmobile™ web-based key management system. The system will send access control credentials over the air to Near Field Communications (NFC)-enabled smartphones, allowing people to use their phones to enter buildings in place of their smart-card ID badges.

“Many smartphones currently on the market are already NFC-enabled with more models being launched every month,” emphasizes Jeremy Earles, Ingersoll Rand Security Technologies product marketing manager, readers and credentials. “NFC-enabled phones can send encrypted data a short distance to a NFC-enabled reader located, for instance, next to a retail cash register or a door lock.

“To turn these smartphones into an access control credential, you simply download the aptiQmobile app to your smart phone and use it to retrieve your secure mobile key that was set up by your access control site administrator,” explains Earles. “Once your mobile key is downloaded, open the app and tap it to the reader just like using a smart card.  It’s very secure and extremely easy to use.”

Research shows that nearly two-thirds of college students are interested in using their mobile phones in place of their ID card and aptiQmobile brings the industry one step closer to that reality. Ingersoll Rand is currently conducting aptiQmobile pilot trials across the country to issue credentials over the air to phones and using those phones in day-to-day access control scenarios. The aptiQmobile management system will become commercially available later this year as NFC-enabled smartphones become more widely available.

At the ISC West Exposition, to be held in Las Vegas March 28-30, attendees visiting the Ingersoll Rand Security Technologies booth 16053 will see a smartphone with the aptiQmobile app being used just like a smart card (or proximity card) to open a locked door. They will also learn about a successful pilot program using aptiQmobile at a major East Coast university.

About Ingersoll Rand

Ingersoll Rand (NYSE:IR) is a world leader in creating and sustaining safe, comfortable and efficient environments in commercial, residential and industrial markets. Our people and our family of brands—including Club Car®, Ingersoll Rand®, Schlage®, Thermo King® and Trane® —work together to enhance the quality and comfort of air in homes and buildings, transport and protect food and perishables, secure homes and commercial properties, and increase industrial productivity and efficiency. Ingersoll Rand Security Technologies’ market-leading products include electronic and biometric access control systems; time-and-attendance and personnel scheduling systems; mechanical locks; portable security; door closers, exit devices, architectural hardware, and steel doors and frames; and other technologies and services for global security markets.  Ingersoll Rand is a $14 billion global business committed to sustainable business practices within our company and for our customers. For more information, visit www.ingersollrand.com or www.securitytechnologies.ingersollrand.com.

Imprivata: they’ve announced a secure texting application developed specifically for healthcare and designed by physicians and for physicians. CorText will allow physicians to share and access PHI securely from their personal mobile devices.

WPC President Eric Mueller’s roundtable discussion offers real-world guidance to solve 5010 business problems to ease migration to ICD-10

LAS VEGAS-HIMSS Annual Conference-Feb. 20, 2012 ─ WPC, a full-service healthcare business process consulting organization in Brentwood, Tenn., announced today that it will exhibit its Security & Compliance and ICD-10 consulting practice solutions at the annual Healthcare Information and Management Systems Society’s (HIMSS) Conference this week in Las Vegas. Attendees can meet the WPC team and receive an overview of security solutions that optimize the safeguarding of protected patient data and address stringent HIPAA/HITECH regulatory demands at the Microsoft Corp. booth #1629 in the Venetian Sands Expo Center.

WPC will showcase its end-to-end analysis of processes, people and technology that have access to sensitive protected health information (PHI) to determine the right solutions to mitigate risk of data breaches, identity theft and fraud. WPC’s security solutions use a practical process in the assessment of a healthcare organization’s HITECH and HIPAA security compliance efforts as well as the preparation for and responding to data breaches.

The WPC team will provide an overview of its security solutions designed to:

• Analyze how protected health information (PHI) and personally identifiable information (PII) is created, received, maintained or transmitted across the enterprise.
• Identify who accesses PHI and PII as well as when, where, why and how it is accessed both within the organization and outside the organization by patients, partners and vendors.
• Evaluate how technology, such as systems, networks, mobile devices, tablets and social media, should be secured to promote HIPAA/HITECH compliance.
• Educate staff through training programs, policy and process review and input, and social engineering recommendations to increase employee awareness of responsibility for protecting PHI and PII in order to achieve compliance and guard against breaches.
• Deliver solutions and test them with clients.

“We’re excited to showcase our Security & Compliance and ICD-10 solutions at this year’s premier healthcare IT event,” said Eric Mueller, services president, WPC. “The financial consequences of non-compliance with stringent HITECH regulatory demands for HIPAA violations can translate to millions of dollars lost and severe reputation damage. Healthcare organizations are faced with the challenge of driving innovation and superior health outcomes while simultaneously maintaining the increasingly high standards to protect health data. We take the business of healthcare security seriously, and we’re committed to helping our clients innovate while providing the very best security and compliance framework.”

“The WPC team has tremendous knowledge and expertise about the important issues affecting the industry,” said Michael Robinson, general manager, U.S. Health & Life Sciences, Microsoft. “We are working together to help healthcare organizations optimize their operational performance, and effectively manage complex business problems while preparing for future regulatory challenges.”

Additionally, HIMSS attendees can actively participate in Mueller’s roundtable discussion to gain real-world guidance from their peers as well as lessons learned from 5010 that can ease migration to ICD-10. According to Mueller, because there is room for error in all parts of the transaction process, it is imperative that providers understand each data point throughout the revenue cycle process and the types of decisions being made by payers, including how they are interpreting 5010 requirements. The session, “5010 Aftermath: What Worked, What’s Left and ICD-10 Preparation Tips,” is 9:45 a.m. PST, Thursday, Feb. 23, in Room Galileo 905.

About WPC

WPC is a healthcare industry leader, providing world class consulting solutions and serving as the exclusive publisher of critical HIPAA implementation publications and related products. Anchored by its nearly 40-year heritage, WPC provides technical, business process and compliance expertise. Its comprehensive solutions empower healthcare organizations to optimize operational performance and effectively manage complex business and technology change. Domain experts specialize in: ICD-10, security and compliance, electronic medical records adoption, health information exchange, payment reform, Accountable Care Organization qualifications, and more. For more information, visit wpc-services.com.

Indigo’s mobile solution offers clinicians the ultimate flexibility and security in virtual environments

MINNEAPOLIS, MN – February 17, 2012 – Indigo Identityware, Inc. (Indigo), a leader in the Identity & Access Management industry, announces password-free  roaming capabilities to and from the desktop and mobile devices including Android® tablets and iPads®. This unique clinical functionality provides clinicians the ultimate flexibility and allows them to provide safe, efficient and effective patient care.

JACKSONVILLE, Fla.–(BUSINESS WIRE)–Availity has become the first health information network to achieve Common Security Framework (CSF) certification from the Health Information Trust Alliance (HITRUST). Achieving HITRUST CSF certification, the leading security benchmark for health care organizations in the United States, enhances Availity’s ability to lower costs for its customers by reducing their need to conduct costly third-party audits, while at the same time reducing their risk of security and privacy breaches.

With continuously evolving security regulation in the health care industry, covered entities are facing greater scrutiny and increased challenges in managing and monitoring their security and privacy practices. HITRUST CSF certification helps companies reduce this burden by affirming adherence to an industry-developed and -supported security framework integrated with state and federal regulations, business requirements and industry standards. The CSF cross-references and harmonizes regulations such as those in the HITECH Act, as well as nationally and globally recognized standards such as ISO, NIST, COBIT, HIPAA and PCI. It is used by organizations that create, access, store or exchange protected health and financial information.

“Our health care business partners and customers quickly recognize the value the HITRUST CSF provides, and respect the rigorous process we undertook to become certified,” said Russ Thomas, Availity’s president and chief operating officer. “Certification removes an administrative burden for Availity and our partners — many of whom would otherwise have no choice but to conduct individual audits.”

Availity sought expert advisors to guide the company through an aggressively scheduled year-long audit process, partnering with executive advisors at Meditology Services. Most companies require multiple years to reach audit readiness, but Availity’s existing high standards accelerated the process.

“HITRUST certification effectively tells business partners that Availity takes protecting their clients’ data seriously,” said Chris Hourihan, director at Meditology Services, an Atlanta-based health care IT and risk management firm. “From Availity’s standpoint, that means fewer audits, allowing the company to focus on other things, like helping to reduce the cost of health care nationwide.”

About Availity, LLC – Patients. Not Paperwork.^�

Availity optimizes information exchange between multiple health care stakeholders through a single, secure network. The Availity^� Health Information Network encompasses administrative, financial, and clinical services, supporting both real-time and batch electronic data interchange (EDI) via the web and through business to business (B2B) integration. For more information, including an online demonstration, please visit www.availity.com or call 1.800.AVAILITY (282.4548).

The technology underpinning Diversinet’s MobiSecure® application that supports mobile healthcare (mHealth) has passed a key milestone on the way toward earning a governmental stamp of approval for safeguarding highly sensitive patient information.

Diversinet – at the mHealth Summit this week in Booth 423 – has gained a spot on a list that qualifies the technology for evaluation of how stringently it can protect patient records and mobile correspondence via secret encoding of information. Sponsored jointly by agencies of the United States and Canadian governments, FIPS 140-2 validation is particularly important for government agencies, medical device manufacturers and pharmaceutical companies.

Achieves NIST ‘In Process’ Status for Stringent FIPS 140-2 Government Standard for Cryptographic Products in the U.S. and Canada

TORONTO, Dec. 6, 2011 – Diversinet Corp. (TSX Venture: DIV, OTCBB: DVNTF), a leader in “Connected and Protected” mobile healthcare communications, has reached an important milestone in an extensive security validation process for the cryptographic modules used by its MobiSecure® mHealth application.

The company’s implementations of the cryptographic algorithms already have been successfully validated by the National Institute of Standards and Technology (NIST) in the United States. Now, the Java cryptographic modules used in MobiSecure have been formally placed on a list for the Federal Information Processing Standards Publication (FIPS) 140-2, Security Requirements for Cryptographic Modules, which specifies the requirements used to protect sensitive information.

The Cryptographic Module Validation Program, the accreditation program that validates cryptographic modules to this standard, is a joint effort between the NIST and the Communications Security Establishment of the Government of Canada.

Cryptographic modules validated through the program are subjected to rigorous testing by independent, accredited Cryptographic Module Testing laboratories. FIPS 140-2 validation is a requirement for any cryptographic product to be used in a U.S. government agency network. It is also gaining worldwide recognition as an important benchmark for third-party validations for a variety of encryption products.

“Our inclusion in FIPS 140-2 as ‘In Process’ reaffirms that the technology underlying our MobiSecure mHealth application meets stringent government requirements for storing and sharing sensitive personal health information via mobile devices,” said Albert Wahbe, Diversinet chairman and CEO. “This validation is also critical for government agencies, medical device manufacturers and pharmaceutical companies, which require absolute security in safeguarding personal health information.”

About Diversinet

Diversinet Corp. (TSX Venture: DIV, OTCBB: DVNTF) provides patented and proven secure products that enable healthcare organizations to rapidly deploy HIPAA-compliant mobile healthcare (mHealth) applications to anyone, anytime, anywhere, on mobile devices. Diversinet’s MobiSecure® application addresses the increasing need for secure messaging, as well as safe, convenient, on-the-go storage and sharing of personal health data. Learn more about how Diversinet is delivering “Healthcare. Connected and Protected” at www.diversinet.com.