Security Policy

Australian Health Management is committed to ensuring the security of the information you provide us. This includes the health fund transactions you make on ahm websites.

You can help to maximise the security of your personal information by following some basic Internet security principles.

Using appropriate software

Using the latest version of your browser will ensure that you are using the most up to date security measures. This site is designed to work with Internet Explorer v5.5 and above, and Netscape v6 and above, however we recommend that you upgrade to the latest version of your browser.

Check for secure browsing

When personal data is transferred via the internet, it should be protected by 128-bit SSL encryption. To check if your data is being transferred securely, check that the address of the site you are on begins with "https". You will notice this feature when you are logged into member services.

Security on public (shared) computers

Generally speaking, public computers are at greater risk of being infected by a virus, containing unauthorised software, and of having poor security options. If you are accessing your health fund details on a public computer, always remember to log out and close the browser once you are finished.

Check for a digital certificate

Digital certificates vouch for the authenticity of a website. They are an electronic credential that we can present to our web site visitors to prove our identity or right to access information.

This site is protected using a digital certificate issued by GeoTrust. The GeoTrust Secure Server ID technology establishes a secure channel between our server and your browser. You can communicate securely using Netscape Navigator, Microsoft Internet Explorer, or most popular e-mail programs.

This ensures:

  • Authentication - Validating that the website your browser is displaying is authentic.
  • Message privacy - Each time you enter secure information, our server will provide you with a session key. Your browser can decode this with your public key. Each session key is used only once, during a single session with a single customer. These layers of protection make sure that information cannot be viewed if it is intercepted by unauthorised parties.
  • Message integrity - When a message is sent, the sending and receiving computers each generate a code based on the message content. If even a single character in the message content is altered, the receiving computer will generate a different code, and then alert the recipient that the message is not legitimate. With message integrity, both parties involved in the transaction know that what they're seeing is exactly what the other party sent.

Back to top