When it comes to security, our focus is confidentiality, integrity and availability of our customer data

The medEbridge® platform has been developed with a strong focus on the secure handling of sensitive health information. The principles of privacy and protection of user data are at the forefront of our considerations and drive our multi-level security policy and plans. We adhere to the Australian Privacy Principles and the Victorian Health Records Act.

Proudly ISO Accredited

Our dedication to security was confirmed when we were certified as operating an Information Security Management System (ISMS) that complies with ISO27001:2013 in November 2018. The ISO27001 Standard provides a benchmark of the maturity of the management system.

Click here to view our ISO certificate.


Security at a glance

Accredited to ISO27001:2013

Hosted at two Australian data centres

24/7 security operations centre and surveillance

Independent third-party vulnerability testing

Agile development methodology

Secure Coding and Robust Testing Practices

Information Security Management System

Our certified ISMS covers all aspects of security, including stakeholders, process, technology and facility. Best security practices are followed for all of our systems and principal health service applications based around a Plan – Do – Check – Act cycle.

The ISMS is a part of the overall management system, based on a business risk approach to establish, implement, operate, monitor, review, maintain and improve information security. The management system includes organisational structure, policies, planning activities, responsibilities, practices, procedures, processes and resources.

Information Security Team

medEbridge® has a dedicated and suitably qualified Information Security Team responsible for Information Security Management. The most senior member of the Information Security Team is also on the Executive Team, to ensure that security has the standing and visibility it needs. This is also backed by a Security Steering Group that meets quarterly which includes all members of the Executive Team.

Further information

We welcome the opportunity to discuss security with you. Please reach out to security@medebridge.com.au for further information or to explore our security plans, protocols and processes. A copy of our medEbridge® Platform Security Statement is also available upon request.