Issues on security not only include documents and/or records but personnel as well. Records entering or leaving your facility need management approval. Procedures and protocols will have to be implemented that are in place throughout the processing phase to assure that all work is completed, and all documentation is tracked and accounted for.

As documentation is received at the processing center, it should be logged in, assigned a production number, counted, put in batches of 20-50, and assigned batch numbers prior to being processed. This endows the service provider with the ability to track, identify, & verify the production process.

It is important to have a two level three (3) time daily backup. All data should be backed up three times per day at your facility, first to a backup server, second to a tape cartridge and stored in a secure location under management control.

The most stringent standards of data and document security must be maintained. All database application software files should be backed up off-site. Fire walls must be in place for the safe and secure transfer of data-both from clients to the service provider and between interim locations. Data must be encrypted prior to transmission. The facility should be designed to comply with the special requirements of clients who require the highest level of security. Institutions can transmit data on dedicated T-1 lines.

Employees have to be put through security and background checks to ensure confidentiality. All employees must sign employment agreements which include:

* Confidentiality of information
* Consent to conduct background investigation
* Covenant not to solicit
* Acknowledgment of drug free workplace and
* Agreement to submit to drug testing as company policy dictates.