Frequently Asked Questions
Get the answers to all your questions about how Vastian works, our company and team, our platform, compliance, and much more.
Getting Started with Vastian
How do I get started with Vastian?
After you meet with your Vastian product specialist and identify your solutions, you'll have the opportunity to add an implementation package. You'll be assigned a dedicated implementation specialist who will onboard you onto the system. This includes weekly configuration meetings, health checks, setup optimization, and prioritized online and phone support. We highly recommend new clients to take advantage of our implementation package to start strong and set up for success.
Does Vastian offer tiered support?
Yes, Vastian offers both Standard and Premier Support options. We also offer expanded Implementation Support for those wanting additional support on getting started.
Pricing & Subscriptions
Can I get a quote or pricing breakdown?
Our sales team would love to talk to your organization about pricing. Click here to provide us information on what you would like to receive a quote on and a Vastian product specialist will connect with you on your needs.
Does Vastian offer subscriptions?
Vastian offers solutions on an annual and subscription basis. The number of users may be increased at any time and will be prorated accordingly.
What payment types does Vastian accept?
Vastian accepts payments by:
- Credit Card
- Check
- Purchase Order
- ACH/EFT
Regulatory Compliance
What standards and requirements do Vastian’s solutions help meet?
Vastian's platform helps your organization maintain compliance with a wide array of government and accrediting agency requirements. Our users have been through tens of thousands of inspections and surveys, and we've designed our solutions in collaboration with industry experts to help promote best practices.
Vastian's solutions help meet standards and requirements from:
- Joint Commission
- College of American Pathologists (CAP)
- DNV
- ISO
- FDA
- HIPAA and HITECH
- AABB
- COLA
- American Association for Laboratory Accreditation (A2LA)
- American Society for Histocompatibility and Immunogenetics (ASHI)
- and more
Is Vastian HIPAA-compliant?
Vastian has third-party affirmed HIPAA compliance. Additionally, Vastian maintains an active HIPAA and HITECH risk mitigation policy. Most Vastian applications do not involve ePHI, but we treat all data with the same industry-leading security and confidentiality. If you plan on storing HIPAA or HITECH-protected ePHI in Vastian, you'll need a business associate agreement (BAA) with Vastian. We can work with your team to sign any necessary agreements.
Does Vastian meet 21 CFR Part 11 requirements?
Vastian's electronic signatures meet 21 CFR Part 11 requirements for legal validity and enforcement.
Information Security
How secure is Vastian?
Vastian is the most secure Quality Management Software solution in healthcare today. Vastian is both SOC 2 Type 2 and FedRAMP certified, achieving the highest level of security of any QMS solution. We maintain a robust, industry-leading information security program that ensures the integrity and confidentiality of your data. Our team is dedicated to meeting all private, public, and federal requirements, employing best practices, and adhering to the highest standards of data protection.
How easy is it to deploy Vastian?
Vastian's platform is provided as software-as-a-service, not installed on your organization's local network. That means no servers to deploy, no software to install or maintain, and no IT involvement from your organization. Your access is provided instantly, with the full protections of Vastian's information security program.
How does Vastian combat downtime?
Vastian is committed to providing a platform that is available 24/7/365, always responsive, and never overloaded. We use a serverless cloud-based architecture, which provides redundancy, geo-replication, and scalability to meet user needs.
Does Vastian use secure data centers?
Vastian's platform is hosted in world-class data centers managed by Microsoft, which also hosts some of the world's leading companies and websites. This provides physical and administrative security over all of your data. Vastian employs web application firewalls to monitor and block malicious traffic. Data in Vastian is stored and processed in US-based data centers, never outside the country.
Vastian's data centers adhere to security controls for ISO 27001, ISO 27018, SOC 1, SOC 2, SOC3, FedRAMP, HITRUST, MTCS, IRAP, and ENS.
Is Vastian encrypted?
All website traffic and data in motion are secured and encrypted with HTTPS / SSL. Data at rest is encrypted with FIPS 140-2 compliant encryption methods, such as AES 256, to maintain privacy and confidentiality.
How does Vastian manage risk?
Vastian maintains a HIPAA and HITECH-compliant risk management program, including employee training, background checks, and an annual risk assessment. We deploy physical, administrative, and technical safeguards to keep your data safe.
Does Vastian offer role-based access?
All Vastian solutions use role-based access, allowing you to grant permissions to users based on role, job description, duties, and more. Permissions take effect immediately, with no delay or downtime. Users are denied access to any resource for which they do not have specific granted permissions.
Does Vastian keep audit logs?
Vastian automatically maintains full audit logs of all views and changes to data, maintained indefinitely. You can access audit logs from inside the platform at any time to review employee access and make sure any access is appropriate. No need to put in a request to us for you to see your own data.
How does Vastian validate and verify updates?
Vastian maintains a comprehensive validation and verification program for our platform and updates. All changes are communicated to users in advance, along with steps necessary to validate the correct operation of the system. Vastian conducts annual and as-needed validation on the entire platform.
When can I access my Vastian data?
You can get all of your data, anytime. Vastian provides comprehensive backups delivered on a weekly or monthly schedule, or you can request them from the platform at any time. Backups contain all of your information in easy-to-use, non-proprietary formats, including original documents, spreadsheets, and copies of courses and competency assessments.
More to Discover
Trust Center
Find out more about Vastian’s dedication to safeguarding your data as the most secure and trusted QMS platform in healthcare.
Legal Center
Read up on Vastian’s Terms and Conditions, Business Associate Agreement (BAA), Non-Disclosure Agreement (NDA), and more.