Without Medstack

Healthcare innovation projects face rapidly-rising costs and long delays

With MedStack

More digital applications integrated with more healthcare enterprises on standardized security and integration frameworks
Our Customer Said

With MedStack, we easily switched off of a labor-intensive AWS setup, freeing up our team to work on our core products and growth. Great company and robust HIPAA compliance!

Raphael Anstey, CEO of CircleLink Health

How does MedStack work?

MedStack supports data residency and healthcare data privacy expectations in multiple jurisdictions around the world.


We support the largest selection of infrastructure technologies and tools



  • PHP
  • Node.js
  • Python
  • Ruby
  • Java


  • MySQL
  • MongoDB
  • PostgreSQL
  • Redis
  • RDS
  • ElasticSearch


  • GIT
  • Push-to-Deploy
  • Docker
  • Docker Swarm
  • Capistrano


  • Managed AWS S3
  • Azure Blob Storage

Cloud Provider

  • AWS
  • Azure


  • Mirth Connect
  • + others

Don't see your tool here? Contact us.
We will work with you to implement your preferred stack.

The MedStack Process

  1. We work with you to determine the infrastructure stack that best supports your app design, architecture and requirements.
  2. We agree on an affordable monthly pricing (hyperlink to Pricing page) scheme that includes all infrastructure and hosting costs, our active compliance privacy and security technology, ongoing privacy audit support and server ops.
  3. The first month's fee covers our setup. Once set up, we work with you hands-on to help you deploy your app, ensure it's running properly and integrate our Monitoring system into your processes.
  4. 24/7 Email support is available to support your operations and expanding technology requirements.

Why should you invest in Privacy Compliance and Security?

Healthcare enterprises, from hospitals, to insurance payers to public health organizations, are under increasing pressure to protect patient privacy and are facing fines for violation more than ever before. IT diligence on security and privacy practices in apps and the businesses that make them will not be compromised, and if the overhead is too high, adoption will be blocked. Also, with incredibly expensive enterprise IT projects such as EHR implementations underway, developers must expect to be asked to interoperate app data – it’s the only adoption model that will be accepted.


Privacy Compliance

Privacy policies for industry regulations are pre-written and real-time auditable by MedStack’s platform, backed by your access to our Active Compliance Monitoring System. Our HIPAA Business Associate Agreement, Annual Penetration Test, Privacy Impact Assessment and Threat Risk Assessment are available to you as well as part of your subscription to support your customer audits.

MedStack also offers you discount access to employee privacy training, business privacy assessment and business policies via our partners Privacy Horizon, the leaders in technology privacy consulting, and cyber-liability insurance via Zensurance. We will work with you for all industry and customer privacy audits to ensure that you are positioned for success and rapid adoption.

MedStack comes integrated with built-in compliance operations:

  • Managed IP, networking and OS patches
  • Automatic and encrypted audit logs
  • HIPAA BAA and GDPR amendments
  • SLA-backed support and incident management systems
  • Hands-on support for customer and industry compliance audits



MedStack’s automation system installs all security configurations and controls required to ensure your app runs and manages data in the cloud to the highest standards of data security and privacy compliance, such as HIPAA, PIPEDA, PHIPA and more.

These controls include: defense-in-depth separation architecture, hypervisor active intrusion-detection, TLS restricted transmissions, 2FA admin access, and more. They are installed, tested, managed and maintained by MedStack’s system without requiring any special code in your app, consistently, irrespective of the cloud host underneath. All backed by our high-standard SLA.

MedStack secures and protects your healthcare data via:

  • Defence-in-Depth separation architecture
  • Hypervisor active intrusion-detection protected VPC
  • TLS 1.0, 1.1, 1.2 restricted transmissions / communications
  • AES-256 dm- crypt LUKS transparent encryption
  • GPG AES-256 encrypted auto- scheduled backups
  • Access key with 2-factor auth for server admin