MCS realizes how important security is to you. We have taken a number of steps that help enhance the safety and confidentiality of transmissions of private information sent from MCS over the Internet.

Q. Is my confidential health information secure?
A. Whenever MCS asks you to send confidential information over the Internet, including personal information, we require that a "secure session" using SSL be established first.

Q. How does a "secure session" help to keep my information private?
A. During a secure SSL session, data is passed between your computer and MCS computers using public key cryptography. Your computer exchanges key information with MCS computers to create a private conversation that only your computer and MCS computers can understand.

Q. What is SSL?
A. Any time you access information or send information to us in one of our secure online areas, that information is encrypted by a technology called Secure Sockets Layer, often abbreviated as SSL. SSL technology secretly encodes information as it is being sent over the Internet between your computer and Medical Claims System computers, helping to ensure that the information remains confidential. The use of SSL requires two components: an SSL-compatible browser and a web server to perform the "key-exchange" that establishes an SSL connection to MCS Web server systems.

Q. What type of browser do I need for SSL?
A. To benefit from SSL technology, you will need a browser with SSL capabilities. Examples of SSL browsers include Netscape 4.0, Microsoft's Internet Explorer 2.0, and the Web browser for America Online version 4.0 for Windows. (Note that some older versions of browsers will not support SSL sessions). If you don't already have a browser with SSL capabilities, you can download an SSL browser from either Microsoft or Netscape.

Q. What type of connection do I need?
A. Nearly all Internet Service Providers (ISPs) automatically enable the SSL session described above, as do most online services such as America Online, CompuServe, and Prodigy. If you use your company's internal connection to access the Internet and you find you can not access MCS' secured pages with an SSL browser described above, your company may be blocking access via a "firewall". Please speak to your firm's Internet access systems administrator for further details on your network's Internet access.

Q. What parts of the MCS site require a "secure SSL session"?
A. Secure SSL sessions are established in the Employee, Employer and Provider areas of the MCS web site where personal information is being transmitted.

Q. Why do I need an ID and password?
A. The use of an ID and password provides an additional security measure that helps protect your confidential information. The password lets MCS verify exactly who you are, thereby allowing access to enrollment and claims information, and helping prevent unauthorized access.

Q. What should I do when I have finished accessing confidential data?
A. When you have finished using a secure area of the MCS site - like reviewing Claims History - make sure you always click on the "Log-out" link which appears on the left hand side of every secure page.

Q. Why can I still see some of my account information even after I have pressed the "Exit Secure Area" link?
A. Browser software often "caches" pages as you look at them, meaning that some pages are saved in your computer's temporary memory. Therefore, you may find that clicking on your back button shows you a saved version of a previously viewed page. Please keep in mind that caching in no way affects the security of your confidential User-ID or password. If you use your computer in a public place, please read "What should I do if I am using a 'public' computer?" below.

Q. What should I do if I am using a "public" computer?
A. If you use a computer that others also work and you are uncomfortable that they may view "cached" pages after you have left the station, then quit/exit your browser software before leaving. This will decrease the possibility of anyone viewing confidential information. No other users will be able to access your personal information online without your User-ID and password.

Q. What are "Cookies"? Do I need to accept them?
A. A cookie is a text file on your computer that helps us to manage your session. If your browser prompts you when a cookie is being saved, you must accept it or access to the confidential session information will be denied. Because cookies are site specific, only MCS can access, read, and make use of the information.