Okadoc, the all-in-one patient engagement platform, has received ISO 27001 certification for information security management systems.
With certifications in four countries – the UAE, the Kingdom of Saudi Arabia, Indonesia, and the United States – this level of verification demonstrates the organization’s adherence to international best practices for security management.
“From investing into new technologies and in-house resources, to implementing all-staff trainings on security compliance and policies, we saw a company-wide and top-down supported effort to achieve our ISO 27001 certification as well as supporting our future compliance with other industry frameworks. While it was a very rigorous process, the certification is a crucial step in demonstrating our commitment to information security to our clients and partners, assuring that their data is consistently in safe hands,’ said Seraphim Patel, Okadoc’s Data Protection Officer & Head of Security Governance Risk and Compliance.
“The ISO 27001 certification demonstrates that we are protecting patient data, keeping customer’s information safe and secure. With this certification, Okadoc’s responsibility towards information security adherence will now be raised to the next level,” Patel added.
Okadoc was able to complete the certification process in one year due to the intense and rigorous preparation for the process. Okadoc was required to document and adhere to a comprehensive and company-wide framework encompassing more than 100 security controls, such as policies, procedures, risk management, incident reporting, risk mitigation, staff training, measurement and monitoring, continuous improvement, and much more.
Okadoc is the Middle East’s first healthtech platform to achieve ISO 27001 certification, and it is setting compliance standards in the region.
Okadoc has achieved a number of firsts, including becoming the first telehealth platform to be approved by the UAE’s Telecommunications Regulatory Authority and the Dubai Health Authority. Okadoc was also named “Best in KLAS” for Virtual Care Platforms in the Middle East and Africa this year.
ISO certifications are only valid for three years, after which an organization must maintain its annual surveillance audit plan and reapply for validation. Certificates can be verified through ISO’s international registries and are also available on an organization’s website.
Okadoc’s instant doctor booking solution is the region’s only one-stop shop patient engagement platform that is directly integrated with providers’ health information systems / electronic medical records (HIS/EMR), allowing patients to see real-time availabilities and book video and in-person appointments without the need for administrative assistance.
Okadoc’s technology not only reduces administrative burdens, but it has also been shown to reduce no-shows by up to 75%, increase patient satisfaction, offer new revenue streams through online consultations, increase operational efficiency by optimizing appointment bookings, and expand payment options for patients.