Frequently Asked Questions

  • qliqConnect

  • qliqCONNECT is a real-time HIPAA and HITECH compliant secure messaging platform for healthcare providers. It allows the secure exchange of Protected Health Information (PHI) via text messages on smartphones and tablets running iOS and Android, and desktop computers running Windows or Mac. Our cloud pass-thru model ensures that all messages stay encrypted in transit and are only stored on devices managed by an organization.  With qliqCONNECT, users can securely send images, videos, audio files, PDFs, documents, spreadsheets and other files.
  • Over 700 hospitals, health systems, hospice, home health organizations, ancillary service providers as well as group practices are using qliqCONNECT.
     
  • Security:  qliqCONNECT’s Cloud Pass-ThruTM messaging architecture is substantially more secure than our competitors’“client/server” architecture because no Protected Health Information (PHI) is stored or decrypted on our servers.    The client/server model of our competitors is less secure since it involves decrypting, re-encrypting, storing, and logging of all messages on a 3rd party server.    qliqCONNECT is unique in that it uses an individual public/private key encryption model.  Therefore it is virtually impossible for qliqSOFT or anyone else to access the server and decrypt the messages containing your PHI in transit or at rest.  The peer-to-peer architecture ensures that all messages are encrypted/decrypted only on your mobile devices and computers where they are stored in an encrypted database. A database that cannot be decrypted even if someone were able to remove it from a user’s smartphone, tablet, or desktop. It is important to note that we have the highest level of encryption available (2048 bit RSA encryption for messages, and 256 bit AES bulk encryption for attachments)
     

    Enterprise-Ready: We use SIP technology, which is the most widely-used and tested communication technology available. SIP is a proven, reliable, and secure form of communication that easily integrates with enterprise communication systems such as IP/PBX, nurse call systems, and tele-health systems.  Furthermore, SIP supports a number of key modalities that allow for rapid deployment of new communication functionality, including screen sharing and teleconferencing.  We have also incorporated an HL7 integration engine directly into our communication platform so that qliqCONNECT can be quickly interfaced via our qliqDIRECT integration engine to any existing PMS, EHR, Laboratory or other clinical system.

     

    Functionality:  qliqCONNECT is designed exclusively for healthcare professionals and their support staff.   It includes the features required in a healthcare setting: customizable message notification and sound alerts, message delivery confirmation, manual message acknowledgement, custom lists of quick messages, the ability to send images/videos/files/voice messges, organization of users by groups/subgroups, inclusion of external users, centralized administration, remote lock and wipe, message archiving, EHR and directory integration, and much much more.

     
    High Availability: The qliqCONNECT mobile application is always on, whether in the foreground or the background. This allows for realtime, high-availability communication whenever and wherever the users desire.  Our solution is inclusive of all health care professionals, their support staff, ancillary service providers, caregivers, and patients. Since a mobile number is not required to route messages, realtime communication can occur from a desktop, smartphone, or tablet.
     
    Expertise:  Backed by two decades of network security experience and expertise, we designed qliqCONNECT to exceed the rigorous security standards required by the healthcare industry.  We deliberately avoided using centralized storage of messages and Protected Health Information (PHI). We are mindful of the fact that the threat and impact of a potential breach is proportional to the amount of data stored. As such, we designed our system so that all PHI is 100% under your organization's control and stored in a distributive manner on your devices. This works for both in both an organization issued device and BYOD (bring your own device) environment.

     

  • qliqCONNECT is HIPAA and HITECH compliant as it provides: authentication, peer-to-peer 2048 bit RSA encryption for messages and 256 bit AES bulk encryption for attachments, auditability, and administrative controls designed to ensure full HIPAA/HITECH compliance.
     
    You can read more on our HIPAA Compliance and PHI Security Page and in our HIPAA Statement.
     
  • If a user wants to send a secure message to someone who is not in their qliqNETWORK, they can easily invite them from their phone’s contact list or by sending an invitation using their email address or mobile phone number. Signing up is a simple process and it is absolutely free. Secure connections can be created in a matter of minutes.

  • For those using the iPhone, iPad or iPod, the app is available at the  Apple AppStore.  For those using Android smartphones and tablets, the app is available at the Google Play Store. The Desktop app for Mac and Windows is located on our app download page.  There is no fee to healthcare providers to download and use qliqCONNECT.
  • Mobile

    • iPhone, iPod Touch, iPad (iOS v. 6.0+)
    • Android Phones and Tablets (v. 2.3.5+)

    Desktop

    • Windows XP, 7, 8
    • Mac OS X
  • Blackberry, Windows Mobile, and proprietary handsets.

  • qliqSOFT will sign a BAA with Covered Entities.  However, keep in mind that qliqSOFT does not fit the definition of a Covered Entity or a Business Associate as no PHI is accessible by qliqSOFT due to the security architecture. When you partner with us, you are note required to have a Business Associate Agreement or invest in lengthy third-party validation procedures. We act merely as a conduit for the messages and cannot access them on even a random or infrequent basis, which exceeds the requirements described in the Federal Register, Vol. 75, No. 134, p. 40873.

     

  • No, qliqCONNECT is only available on smartphones.   qliqSOFT does offer a transition solution from pagers and standard cell phones by sending non-secure notifcations to these non-secure devices.

  • Pricing

  • There are 3 levels of qliqCONNECT service:
     
    qliqCONNECT Professional is free and includes the secure messaging service and basic user administration.  
     
    qliqCONNECT Business costs $6/user/month and includes multiple devices per user, advanced user administration, centralized security controls, device management, messaging archiving on the organization's resources. Volume pricing available.
     
    qliqCONNECT Enterprise is available at a quoted fee or site license and includes custom integration with EHR, PMS, laboratory, clinical or paging systems, directories and other applications.
     
    See pricing matrix: click here.
  • There are no additional SMS (Texting) charges from using qliqCONNECT as all qliq messages are sent securing over data service of your plan. This means that messages continue to be sent and received even if you only have wi-fi access. We have thousands of active users, sending thousands of messages a day, and none have reported any unexpected charges on their mobile bill.

  • Security

  • SMS texting is not secure or HIPAA-compliant. It presents a number of physical and transmission vulnerabilities. Please refer to the diagram that explains each of these in detail.

  • qliqCONNECT is designed with Cloud Pass-ThruTM messaging architecture and Public/Private Key security architecture that exceeds HIPAA and HITECH requirements for all healthcare communication. Please refer to our HIPAA Statement which illustrates qliq’s security features in detail.

  • qliqCONNECT is HIPAA and HITECH compliant as it provides: authentication, peer-to-peer 2048 bit RSA encryption for messages and 256 bit AES bulk encryption for attachments, auditability, and administrative controls designed to ensure full HIPAA/HITECH compliance.
     
    You can read more on our HIPAA Compliance and PHI Security Page and in our HIPAA Statement.
  • qliqCONNECT uses a public/private key encryption architecture to secure messages. Each qliqCONNECT user has a unique "key pair" for message encryption and therefore only the intended recipient can decrypt the message. With this public/private key security approach, not even our company, qliqSOFT, has the ability to decrypt the messages. Other secure messaging solutions use the same key to secure message communications for all users. They also decrypt all messages on the server and re-encrypt for storage. This greatly increases your exposure to a security incident caused by human error with a 3rd party messaging vendor.

  • We use 2048 bit RSA encryption for all messages and 256 bit AES bulk encryption for attachments (images, audio files, videos, pdfs, and documents).

  • qliqCONNECT text messages and attachments are stored in an encrypted database on the user's devices (mobile and desktop).   The databases on the devices or desktop computer cannot be decrypted even if an individual were somehow able to download them since they would not have access to the private key required to decrypt them.  If the qliqSTOR message archive is used, the message reside with in the qliqSTOR database that is hosted behind the firewall of the healthcare organization and in their direct control.

  • Messages are stored locally in an encrypted database on the user smartphone, tablet, or desktop, but are automatically deleted according to the message expiration set by the administrator. A user has the option to delete messages and attachments sooner if desired.

     

  • Currently, the application does not limit how many messages are stored locally. Modern smartphones and computers have the capacity to store several years' worth of text messages. The default setting for message archival is 7 days. However, the user can increase or decrease that length of time if they have purchased qliqCONNECT Business, which provides central administrative control over the devices.

  • Your information is protected if a device is misplaced or lost.  qliqCONNECT will automatically lock itself after a pre-defined (administrator controlled) amount of inactivity or idle time. Additionally, both end-users and administrators can remotely lock and wipe the application data by logging into the administrative dashboard on qlqiSOFT's website. 

  • Each user must have a Username and Password with an optional PIN. The password strength requirements can be set by the account administrator.

  • By default, messages will expire and be deleted from the end-user qliqCONNECT application.  For qliqCONNECT Professional users, the messages will automatically expire after 7 days. qliqCONNECT Business Administrators have the ability to select the message retention rate.   Messages can be archived for a longer period by the organization using the qliqSTOR archive.

     

  • The policies are administered through the qliqCONNECT Business/Enterprise web console under the direction of the administrator.

  • Some policies (password requirements, length of message storage, etc) are implemented universally and some can be applied at a group level.

  • All messages and their status are individually date/time stamped. If the intended recipient is offline, the status shows “Pending”. When the recipient receives the message, the status on the sender’s device changes to “Delivered" and when the message is viewed the status changes to "Read"  In addition to message logging, qliqConnect allows senders to request an acknowledgement from the receiver. This functionality ensures that messages were received, read, and understood. The acknowledgement itself is also date/time stamped. By touching or right clicking a mouse over a message segment, an option appears to view message details, which include message id, the date/time it was created, sent, received, and read.

  • Features

  • The main feature of our applications is peer-to-peer messaging between healthcare professionals, ancillary service providers, administrative staff, caregivers, or patients. All users are identified by their email address and our cloud servers route the messages from one user to another. Peer-to-peer messaging does not depend on a mobile number and uses a combination of Public and Private Keys to ensure that all messages remain encrypted while in transit or at rest. 

  • Yes. It is possible to send a message to multiple individuals at the same time. qliqCONNECT support both collaborative group chats as well as broadcast group messages.

  • Yes, documents, spreadsheets, PDFs, images, video and audio files can be sent and received securely with qliqCONNECT.  File attachments are encrypted using 256 bit bulk AES encryption.

  • No. You can only forward a message to users on qliqCONNECT.  A non-qliq user can receive an invitation to join your qliqNETWORK and then be able to receive secure messages in qliqCONNECT.
     

  • Yes, all messages have detailed deliver status that are individually date/time stamped. If the intended recipient is offline, the status shows “Pending”. When the recipient receives the message, the status on the sender’s device changes to “Delivered”. In addition to message logging, qliqConnect allows senders to request an acknowledgement from the receiver. This functionality ensures that messages were received, read, and understood. The acknowledgement itself is also date/time stamped. By touching or right clicking a mouse over a message segment, an option appears to view message details, which include message id, the date/time it was created, sent, received, and read.

  • Yes, all messages are tracked through their life-cycle and visible on both the sender and recipient devices. By touching or right clicking a mouse over a message segment, an option appears to view message details, which includes message id, the date/time it was created, sent, received, and read.

    Additionally, if an organization uses the optional qliqSTOR archival server, all messages (including the message metadata - status, date/time stamps) are stored centrally on the healthcare organization’s datacenter/cloud and can be viewed and queried as required.

  • Yes. An end-user can set their status to Available, Away, or Do Not Disturb.

  • We provide web-based account for both individual and group accounts. Individuals can manage their personal profile and password. Group administrators can manage users, create and manage sub-groups (including access privileges), tailor the security settings, manage devices, review activity logs and assign multiple administrators. Additionally, group administrators can remotely lock and wipe data from an end-user’s device in the event the device is lost or stolen.

  • We have a database driven user activity report. It is possible to create custom reports based on the organization's requirements.

  • Yes, with qliqCONNECT you can invite other users to your qliqNETWORK.   All you need to do is to tap the Invite button and select contacts from your smartphoen contact list, or enter their email addresses or mobile phone numbers. Your contacts will receive an informative invitation email or SMS text message from you. Once they have accepted the invitation, you will be able to communicate with them on qliqCONNECT. 

  • Specifications

  • Version 2.1.3; major releases will be available approximately every 3 months

     

  • There is no infrastructure or specific device requirements to implement qliqCONNECT as it is a SaaS messaging service. Everything is cloud based except the message archival server, qliqSTOR, which is housed on the customer’s premises. qliqSTORis a Windows service that runs on any modern Windows server or Windows virtual machine.

  • We have a distributive architecture where data is stored on the customer’s devices and servers. qliqSOFT uses a cloud-based SIP server for realtime message routing and delivery. All messages are end-to-end encrypted so only the sender can encrypt the message and the intended recipient can decrypt the message. Our peer-to-peer architecture uses a combination of Public and Private Keys.. All messages are deleted from our server immediately upon delivery so no Protected Health Information (PHI) is stored or encrypted/decrypted in the cloud (cloud pass-thru). Encrypted messages are only transiently stored on our server if a recipient is offline. In this case, we use a push notification service to ensure a high reliability of message delivery. This prevents the need for both the sender and receiver to be online simultaneously to send/receive messages. There are no changes required to an organization’s existing firewalls and the application runs as a service on the user’s mobile devices or desktops for constant availability. The sender can initiate messages even if a network connection is unavailable. The messages are automatically delivered when the sender goes online. The desktop and mobile applications are thick clients and the installation of the application does not require administrative privileges on the computer.

  • Yes, qliqCONNECT includes a interface hub application for integration. It uses SIP for nurse call systems and HL7 for EMR/EHR as well as other clinical systems. This includes event notification as well.

  • There are no limits to the number of interfaces our system can handle.

  • Yes, qliqCONNECT supports Active Directory integration.   Different integration approaches are available based upon the Active Directory specifications. 

  • We currently support the batch importing of contacts via a CSV file and the user can invite others from their device to join their qliqNETWORK.

  • qliqSTOR is the archive applicationfor qliqCONNECT for use by healthcare organizations. It is installed behind an organization’s firewal so they have 100% control over its data. qliqSTOR receives a copy of all messages sent between the organization's users. All messages, attachments, and delivery status time stamps are stored within qliqSTOR and they can only be accessed by the group administrator or other authorized individual for auditing or e-discovery purposes.

  • Major releases are available approximately every 3 months.

  • We are constantly improving the functionality of qliqCONNECT so it is important that you use the latest iOS, Android, or Desktop versions of our application, which will be optimized for the latest operating systems. The minimum iOS version is 6.0+, for Android v. 2.3.5+, and on Windows XP/7/8 and Mac OS X.

  • Yes. We are able to directly integrate with EHRs and other clinical systems through our interface engine qliqDIRECT which uses HL7 2.x standards and above to interconnect qliqCONNECT with the system. Another way to integrate would be to use our API.

  • Registration

  • Any healthcare provider, group, or organization can register  for a qliqSOFT account at www.qliqsoft.com.  The person submitting the group registration is by default the group administrator. To successfully create a qliqSOFT account, you need to have a valid email address, phone number, and web address.

    The following steps are required to complete your registration and activate your account:

    You can watch this demo to review the process.

    • The admin receives an initial email after submitting the registration form.
    • qliqSOFT then verifies that the practice, organization, or health system registering is legitimate.
    • Based on the results of the verification, qliqSOFT can accept, deny, or hold the registration.
    • Once the registration verification is complete, the admin receives an email with the activation instructions.
    • A simple three step process helps the admin quickly implement realtime secure communication.

     

  • At qliqSOFT, we take security and integrity seriously. To ensure all of our users are legitimate members of the health care team, we implement a verification process that is typically completed within 2 hours. As part of our process, you may receive a direct call from one of our representatives. It is not necessary for an organization to have a website in order to use qliqCONNECT.

     

  • Support Q&A

  • We offer a QuickStart Guide,  video tutorials (screencasts), our FAQ section, a subscription-based direct training and support. We are also adding various in-app assistance techniques.

  • We provide direct, live training to qliqCONNECT adminstrators.  In addition, we have a QuickStart Guide, video tutorials (screencasts), a FAQ Help web page, a subscription-based direct training and support. We also include various in-app assistance techniques. In addition, we will provide routine webinars and web-based tutorials.

  • We provide email and phone support for paid subscribers.  In addition we offer self-service tools, FAQs, and a subscription-based direct training and support program. Our general support email is support@qliqsoft.com.

  • Recommended settings include:

    • For iOS, Push Notifications should be on and approved for qliqCONNECT.
    • For Android devices, the screen alert must be turned on otherwise message notifications will not be received.
    • If battery consumption is a concern, qliqCONNECT battery saving mode can be turned on by going to Settings, then selecting General, then turn on Battery Save Mode.