Touch SurgeryTM Enterprise benefits from the physical and environmental security controls of Amazon Web Services (AWS) data centers, where customer sensitive data is processed/stored. AWS owns and manages all equipment/media used to provision Touch SurgeryTM Enterprise services, to include equipment maintenance (local or remote) performed at AWS data centers. This includes maintaining a list of individuals authorized to perform maintenance, and managing their access at AWS facilities. AWS also uses Nitro technology which does not allow anyone, including AWS staff, to access the content, even if the physical device were to be removed from the data center. This is implemented at the hardware level so cannot be changed by making software changes.

The connection is as secure as your existing network security settings. Only the ports 80, 123 and 443 are opened for HTTP and HTTPS traffic. More information on specific network requirements can be provided on request and is provided on implementation.

Touch SurgeryTM Enterprise is currently deployed in data centers of two Amazon Web Services (AWS) regions; Europe and the US:

Your video data can be stored in a local region. This can improve playback performance and/or support your regulatory needs.

Yes. Touch SurgeryTM Enterprise is deployed across 2 AWS regions, each with 3 availability zones, and if required, local buckets can be used for storage. Each region’s facilities are designed to be completely isolated from the others.

Yes. The Medtronic Global Records & Information Management Policy (“RIM Policy”) establishes rules for handling Medtronic information throughout its lifecycle from creation, receipt, use, distribution, storage, retention and disposition; including preservation and protection. Compliance to this Policy ensures Medtronic meets legal obligations, regulatory requirements and business operational needs by establishing consistent and accountable recordkeeping practices.

The Medtronic Global Records & Information Management Program works closely with Medtronic’s Global Security Office and Global Privacy Office to ensure Medtronic is aligning with retention, security and privacy policies based on legal and regulatory requirements.