IT Considerations for Using the RiskGATOR Suite
Frequently Asked Questions for IT Teams and Decision-Makers
We understand that introducing any new platform into your organization involves careful consideration from an IT perspective. This document is designed to answer the most common questions we hear from IT departments, security teams, and governance committees. Our goal is to make the process as smooth and transparent as possible — and as you’ll see below, the RiskGATOR Suite was built from the ground up to make IT’s life easier, not harder.
Q1: Does implementing the RiskGATOR Suite require a lot of IT modifications?
Great news — the short answer is no! The RiskGATOR Suite is a fully cloud-hosted Software-as-a-Service (SaaS) platform. That means there is absolutely nothing to install on your servers, workstations, or network infrastructure. There are no on-premise components, no middleware to configure, no databases to manage, and no software patches to schedule.
Here’s what your team and users actually need to get started:
- A standard device: A computer, tablet, or mobile device with a modern web browser (Chrome, Edge, Firefox, or Safari).
- An internet connection: The platform is accessed over HTTPS like any other secure web application. No VPN tunnels, firewall rule changes, or special port openings are required.
- That’s it! We handle all server provisioning, maintenance, security patching, backups, scaling, and uptime monitoring. Your IT team never needs to worry about infrastructure, operating system updates, or database administration.
In most organizations, getting started is as simple as adding our URL to your browser bookmarks. If your institution uses a web application allow-list or content filter, you may need to add our domain — and that’s typically the only IT action required. We’re happy to provide the specific domain details and IP ranges upon request.
Because there are no local installations or dependencies, there are also no ongoing support burdens on your IT staff. Updates and new features are rolled out seamlessly on our side, with zero downtime for your users. Everyone always has access to the latest version of the platform automatically.
Q2: Can the RiskGATOR Suite pass our institutional IT governance approval process?
Absolutely — and we’ve designed the platform with exactly this kind of review in mind. We know that healthcare and laboratory organizations have rigorous governance, risk management, and compliance requirements, and we take that responsibility seriously. Here’s a summary of the security and compliance measures already in place:
Data Center Certifications
The RiskGATOR Suite is hosted in data centers that hold both SOC Type 1 and SOC Type 2 certifications, as well as ISO 27001 accreditation. These are internationally recognized standards that independently verify our operational controls, data protection practices, and information security management systems. SOC 2 specifically evaluates security, availability, processing integrity, confidentiality, and privacy — the exact criteria most governance committees look for.
Role-Based Access Control (RBAC)
Access within the RiskGATOR Suite is governed by a granular Role-Based Access Control system. Each user is assigned a role that determines exactly what data they can view, edit, or administer. This ensures that laboratory staff only see the information relevant to their responsibilities, and that administrative functions are restricted to authorized personnel. RBAC is a core requirement of most IT security frameworks, and it’s built right into the platform from day one.
Data Security: Encryption In Transit and At Rest
All data transmitted between your users and our servers is encrypted using industry-standard TLS (Transport Layer Security) protocols — the same encryption used by banks and healthcare systems worldwide. Additionally, all data stored in our databases and backup systems is encrypted at rest. This dual-layer approach ensures your data is protected whether it’s moving across the network or sitting securely in storage.
Patient Data and PHI/PII Risk
An important distinction that often simplifies governance review: the RiskGATOR Suite works exclusively with Quality Control (QC) data, instrument performance metrics, and laboratory operational data. The platform does not collect, store, process, or transmit any Protected Health Information (PHI), Personally Identifiable Information (PII), or individual patient test results. There is no patient data in the system whatsoever.
This means that the risk profile associated with patient data breaches is non-existent. Your governance committee can be confident that deploying the RiskGATOR Suite introduces no PHI/PII exposure, no HIPAA data-handling obligations beyond standard business associate requirements, and no patient privacy concerns. This significantly streamlines the approval process for most institutions.
Comprehensive Security and Privacy Documentation
We believe in full transparency. All of our security policies, privacy practices, terms of service, and compliance documentation are publicly available for your review. You can find everything your governance team needs at:
This includes our Privacy Policy, Terms of Use, Data Processing Agreement (DPA), and security overview documentation. If your governance process requires additional materials — such as a completed security questionnaire, a HECVAT form, or a vendor risk assessment template — please don’t hesitate to reach out. We’re happy to provide whatever your team needs to move forward confidently.
At a Glance
| Consideration | RiskGATOR Suite |
| Deployment Model | Fully cloud-hosted SaaS — nothing to install |
| Server / Infrastructure Requirements | None — we handle everything |
| User Requirements | Web browser + internet connection |
| Data Center Certifications | SOC Type 1, SOC Type 2, ISO 27001 |
| Access Control | Role-Based Access Control (RBAC) |
| Encryption | TLS in transit, AES-256 at rest |
| PHI / PII / Patient Data | None collected, stored, or processed |
| Security Documentation | awesome-numbers.com/legal |
We hope this addresses the key IT considerations for your organization. The RiskGATOR Suite is designed to deliver powerful laboratory quality management capabilities without adding complexity to your IT environment. If you have any additional questions — whether technical, compliance-related, or otherwise — we’d love to hear from you. Our team is always available to support your evaluation and approval process.
Questions? Reach out to us at info@awesome-numbers.com — we’re happy to help!