You have our commitment that we will treat your personal, business and financial information with the same standard of care as we treat our own confidential information of a similar nature. Concentra employs a diverse range of technologies and security safeguards to ensure the safety, confidentiality and integrity of your information and to protect personal information against loss or theft, as well as unauthorized access, disclosure, copying, use or modification. We protect personal information regardless of the form in which it is held (e.g., hard or electronic copy).
Concentra employees understand the policies and procedures for protection of customer personal information. As a condition of employment, our employees are required to sign an Oath of Office and Confidentiality including a commitment to keep an individual's personal information in strict confidence as well as receiving annual privacy training.
All third party service providers that may have access to personal information held by Concentra are required to go through a due diligence process to ensure they can meet the same standards we adhere to when it comes to safeguarding your personal information. We also include obligations for privacy and security in our contracts with our third party service providers. Our third party service providers are monitored throughout the duration of the relationship to ensure that standards are being maintained.
Concentra has a Chief Privacy Officer to address client and employee concerns and ensure that Concentra policy and procedure align with privacy requirements and our commitment to security.
The security of the confidential information we hold is important to Concentra and there are many controls in place, such as up-to-date information security policies, procedures, information management and technology service delivery, and enterprise architecture.
To further protect sensitive information, an extensive security program is in place that includes physical facility access control, event management and audit, intrusion protection, virus protection, vulnerability scanning, as well as numerous other deterrent and detection methods.
Concentra periodically engages external information technology security-certified consultants to review internal controls and benchmark to industry standards. This process confirms that the security procedures and practices used by Concentra protect systems from potentially malicious activities. Additionally, this effort identifies opportunities to reinforce Concentra's intrusion detection processes.
Concentra retains personal information only as long as necessary to provide the products and services you have engaged us for or for other legitimate purposes such as complying with our legal obligations, resolving disputes or enforcing our agreements. Concentra has guidelines and procedures in place respecting the retention of information to meet our regulatory and legal obligations.