We take security very seriously at Concordia Plan Services. All efforts are made to protect the large amount of
employer and member data we house. With that said, we have a multi-layer environment of how data is stored
and protected at-rest with encryption, who has access, connections to servers, transfer of data (Transport Layer
Security and Enterprise-Strength Firewalls) along with extensive security monitoring.
The employer administration part of the portal resides in a secure hosted facility behind industry leading firewalls.
When you access the website it is secured through Secure Sockets Layer. This is the standard security
technology for establishing an encrypted link between a web server and a browser. This link ensures that all data
passed between the web server and browsers remain private.
Additionally, we utilize Microsoft Active Directory internally to assign roles and permissions to critical servers,
folders and files. This is monitored and audited on a frequent basis. We partner with a security vendor that
monitors our systems for any inbound or outbound malicious or suspicious activity. There are also technologies
implemented at the perimeter of our network to detect and alert our internal and external security teams in the
event of issue.
Finally, we’ve implemented solutions to monitor and alert key IT personal when Protected Health Information,
personally identifiable information, Social Security numbers or credit card numbers are being sent unsecure. The
solution will block those messages and provide a report back to key technology personnel.