Security Policy

Our Philosophy

It is well-known that patient information is a highly-valued target of cybercriminals around the world. No country or business is truly immune to this ever-present threat.  Consequently, ensuring the security of our operations and our relationships with our customers whose information we process is of great importance.

We know that delivering the best technology is our key to continued success, and that treating the privacy and security of our customer’s information with the seriousness it requires must be an integral part of that. By keeping our supply chain secure we extend this vital protection to our customer and our shared patient by keeping their information safe, trustworthy and only in the hands the caregivers who need it.

Our Approach

From our earliest operations, we have designed and built our platform to embed elements and features that make the ObservSMART system secure in its operation. Because we take your security as seriously as you do, we want to give you insight about how we accomplish this, and through it, provide you and your data with a well-designed and secure platform.

Risk Management

We make every effort to be the strongest link in our customers supply chain. We accomplish that by creating a rigorous privacy and security program that includes carefully vetting our vendors and suppliers to ensure they emphasize these areas. We routinely train and inform our workforce members regarding best practices to ensure our own house is in order.

At the heart of our program is the attainment of the industry’s most stringent privacy and security standard:  the HITRUST r2® Certification. Using this as our foundation, we take the next step and build upon it to address current and newly emerging risks and threats to ensure  we are prepared to successfully defend against them if and when they occur.


We adopt the best-practice approach of “secure in design, secure by default”. Our architects and developers are experienced in methods of secure design for our platform and its functionality. Together, they carefully plan how its modules will connect and interact, how the information will flow into, through and out of our system to its destination in our customers’ systems. This enables us to identify any weaknesses, gaps and single points of failure to ensure they are corrected well before a problem can arise.


Our system receives testing at all levels: each process, each module and the entire system. This testing ensures that our finished product delivers top performance and sound security. We extend this diligence to ObservSMART’s maintenance and lifecycle to make certain it stays that way even while it adapts to your evolving needs and requirements.


We know the compliance requirements that must be met by our customers. We ensure that these requirements are fully understood and built into our designs and operations.  Our technical staff are experienced in integrating security of function with user-enablement to achieve the optimum balance of performance and protection.

Guided by our Chief Information Security Officer, we stay in regular contact with the authorities over this constantly shifting landscape. This means we can meet today’s requirements and proactively plan to meet tomorrow’s changes.

Our Workforce Members

Of course, no program like this succeeds without ensuring that those who make it work are as strong in their skills and knowledge as the technologies and practices they use to do it.  Our workforce is made up of highly experienced professionals across all areas of our company. We ensure they keep their skills honed through regular training and awareness events so that we continue to deliver top performance and strong protection delivers every day to each customer.

Our Commitment

This is a commitment we work hard to keep to every customer every day all day. We do whatever it takes to ensure that InvisALERT Solutions is the strongest link in our customers’ supply chains every day.

To Learn More

We want to communicate clearly about the importance of strong protections over patient data and how our program achieves this. Whether you are a current customer or are considering adopting our technology, we welcome your inquiries and will be happy to answer your questions.

Please send an email to us at with either “Privacy” or “Security” in the subject line, and a member of our Privacy and Security staff will respond within 48 hours.


At InvisALERT Solutions, we place great value on your business, but your trust is priceless.


Ross A. Leo


Chief Information Security Officer (CISO)

Certified Data Privacy Solutions Engineer

Certified HITRUST CSF Practitioner

Certified Cybersecurity Architect