BodyMapSnap 3.6.8 Is Here

We will be switching over our server with our next major release BodyMapSnap 3.6.8 (we had 8 internal beta iterations) on Friday, 2 February 2018 in the evening. 

There will be a short server downtime surrounding this event.

After the server is up, we will release the 3.6.8 app on the AppStore.

We have made some significant updates and improvements along with the usual "performance and stability" improvements.

Your current 3.5.x version will not support all of the latest API changes we made so the update is mandatory.

We came a long way from 1.0, and you will notice the continued evolution in BodyMapSnap. Rather than providing a lengthy list, I invite you to watch a short 2.5 minute video to see the changes.


6 Reasons Why BodyMapSnap is Made for Home Care Providers

If you are a home nursing care provider professional, WinguMD BodyMapSnap’s patient centric visual collaboration features can make significant improvements in the efficiency and accuracy of your care-giving activities while providing medical grade security in all your communications. And you are just one download away to start trying our technology, free.

1. Gain Efficiency and Accuracy: You already use your iPhone to coordinate your daily life to run more efficiently with your family and friends. BodyMapSnap's patient centric approach, unlike other secure medical messaging apps, gives you the care contexts to speed up your work on your iPhones; instantly.

2 .. Mobile & Secure: Record images in patient homes anywhere and anytime, without the worry of HIPAA regulation concerns. Everything is secured from the moment you press the shutter button or type in a message.

3. Record Everything: Do not limit the picture taking to patient conditions. For example, instead of jotting down all the medications the patient is taking you can just take the photos of the bottles and bags. Capture insurance card images and consent forms too. BodyMapSnap can recognize those into text so you can always search for them later.

4. Geo Location: BodyMapSnap can keep track of where you took the images. Then use  your iPhone's map and driving directions for revisits and to locate staff closest to the patient.

5. Instantly Chat with Your Team: You can message and instantly alert everyone in your care coordination team to review cases and ask for assistance from your medical staff.

6. Includes Free and Simple Visit Management System: Don't have an Electronic Medical Record (EMR) or Scheduling System? We have a free and simple schedule management system built into BodyMapSnap. You can also search by patient name, medical record numbers and reasons for visits. We can of course integrate with most of your system today or as you grow your own practice.

BodyMapSnap has the free-forever trial tier where you can take as many days as needed to try it. We never delete your photos, and your “view-only” collaborators can use it free any time. Download it from the Apple iTunes Store (from your iPhone) and start gaining the efficiency and security today.


Why We Developed ZoomShare

You might already have seen our ZoomShare feature. If you pinch on an image, a button on the bottom of the screen appears saying “Share.”

At first, you might think it is a bit strange why you would want to do this.

But, Why?

The context is the most important aspect of collaboration. So, not losing your viewing context is our number 1 priority. The next important WinguMD philosophy is to significantly accelerate your communications. Together we have designed a truly effective and efficient way for you to communicate in medical settings.

Now, let's imagine that you find a part of the picture that you have a concern with and want to discuss about that specific part.

One way, you probably have seen, is to let you draw an arrow, line or a circle. In radiology workstations, this is called a Region of Interest (ROI).  On desktop computers, you can use a mouse to draw shapes and it’s relatively easy to do.

Try drawing on a tiny mobile screen with your finger. It will take a lot of time to get it right. We believe that simple stretching and panning is a great deal faster. So, this is our method: you can stretch, pinch, zoom, and center the area of interest in the picture naturally and carry on with the rest of the conversation. 

How to Use BodyMapSnap ZoomShare

While viewing the full image, place two fingers on the image and using the stretching or pinching action zoom in to the image with the size you desire, then with one finger, you can pan the image to center the area of interest. You probably have used these gestures already from other apps.

BodyMapSnap ZoomShare is very simple and quick way to share your viewing contexts.

BodyMapSnap ZoomShare is very simple and quick way to share your viewing contexts.

Once it looks right, press the share button and the image is shared with the rest of the team in the discussion. The original image is not altered. The zoomed version will appear in the chat message, and if you tap on it, you will see the full screen version of it.

It really is just as simple as that.

From our natural language search to text reader to this, WinguMD's goal is to make your medical collaboration easier, faster, accurate and of course secure.

Significantly Increase the Security of BodyMapSnap Log-In with Google 2-Step Authentication


You've probably heard about 2-Step or 2-Factor authentication and wondering what it is and why we would want to use it.

You may not realize it, but you've been using 2-Step authentication all along. Your ATM card is a part of the 2-Step authentication system. The two parts are your card and a PIN.

With Google 2-Step authentication, Google provides you with an authenticator app that installs on your mobile device*. You use it in addition to your email address and a password.

When you log-in with Google 2-Step authentication, you need this authenticator app. It shows a new 6-digit code every minute that only you and Google can match. As the code expires in that minute, stealing the code will not do much.

With BodyMapSnap Google authentication integration, here is what happens.

1.      Google gives us the confirmation that it is you who has signed on based on your password and authenticator code.

2.      Google makes sure that the request came from a Google registered BodyMapSnap server (and not from a hacker's make-shift server).

Another big benefit is that your Google password is never seen by BodyMapSnap, therefore, it's not possible for BodyMapSnap to leak your password.

Why is it “quite a bit” more secure?

Imagine that you contracted some malware, your password was leaked world-wide, and remote hackers attempted to access your account. With the 2-Step authentication, they still need your authenticator, which they are extremely unlikely to have.

To help you sleep even better though, Google now notifies you when there are any new sign-in activities.

2-Step verification is still not a panacea. Imagine someone you know has “borrowed” your phone, hence the authenticator, and if the person knows your phone unlock code and password, that won’t prevent access.

So, please keep up with your security by changing your password often, not use a password that’s easily guessed like your pets’ or children’s names, and making sure you put a lock code or use the fingerprint feature on your phones.

Now you know that 2-Step authentication gives you significantly better security for medical information handling,  and why we have integrated it.  Google also gives this technique free for everyone.

This is another way, WinguMD provides better security for all your medical collaboration needs.

Not Ready for "2FA?"

You should change password often, and to do that you should use a password manager. I used one (but that in itself is 2FA enabled since one password loss with a password manager you will open up all your passwords, that's a lot more dangerous!).

Additional Notes

*I use another authenticator called Authy. If you start to use many other services that has 2-Step authentication, it is a lot more convenient.

On May 2018, I have started to use YubiKey. This is a bit more convenient. I just plug in a USB based key and tap the button on the key. No code typing is needed.

Microsoft Authenticatior is also better than Authy. Instead of typing in a number you just tap from a choice of answers on your mobile. I use this to authenticate the access to our Microsoft Azure cloud. If you are accessing Microsoft properties this is highly recommended.



WinguMD Joining GE Ventures & Startup Health Entrepreneurship Program


Oliver Aalami, MD
Chief Medical Officer, Cofounder

WinguMD has a very clear mission: to build the best mobile medical photography solution. Photos are an extremely powerful way to document and communicate, and we are building the platform to enable just that, for healthcare. That is why we are thrilled to partner with StartUp Health and GE Ventures to gain more traction and scale with GE’s global network. 

StartUp Health offers a visionary team and has been phenomenal to work with thus far.  They see the potential of digital and mobile to transform all aspects of healthcare. We are excited to participate in their program to get the industry and market intelligence necessary to be successful in today’s ecosystem. We are also excited to join their national community to help improve the delivery of healthcare and touch as many lives as possible! 

2016 will be an exciting year for us filled with more EHR and imaging network integrations (such as DICOM Systems) as well as feature roll-outs to enhance user experience and image analysis. There are also many medical specialty-specific features being developed—stay tuned! 

Photos truly tell a story. We are passionate about making “dumb” JPEGS “smart” for healthcare with structured metadata and integration into the legal medical record. Too much data is being left on the table today with the explosion of the non-medical grade mobile digital media being generated for healthcare. We get it and want to  leverage the efficiency associated with this behavior and are working hard to incorporate it into the existing clinical workflows. As part of the GE Ventures & Startup Health Entrepreneurship Program we are even more confident that we can achieve our goals.

7 Most Essential "Low Tech" Security Practices


You have most likely seen and read about HIPAA breaches or other technical security issues. Often we do not realize that many of these issues are actually due to the incorrect use of technology, as well as not having established the most basic people procedures.

For example, let’s say that someone working in your clinic leaves. Do you know for sure that that person no longer has access to your clinical systems? You could have gotten the building key back, but remember the person can still come by your office, access Wifi and still do damage. Essentially you only took back one key: there are actually many other doors to your office.

So it’s essential that before you think about technical security, make sure your own people are complying with good security practices every day.

Here are some basic things you can do: 

  1. Use your phone’s auto PIN lock or fingerprint access and know how to remotely disable your phone.
  2. Assign a username and password for each of your employees. This is also important for the off-boarding process. For example, if you are sharing a password for the clinic’s main email access, change that password.
  3. Check and understand where and which mobile devices are being shared. Again, be vigilant about changing passwords.
  4. Make sure everyone is aware that accidental photo taking of PHI (labels, charts, name tags, address, bills, envelopes, etc.) can cause a HIPAA breach.
  5. Avoid emailing PHI containing information in the text of email. If you must send the information, use a secure email service or zip the file and then assign a password.
  6. Have a simple and regularly updated employee off-boarding checklist. Remove access to web-based subscriptions, office VPN, and often missed but most important, the WiFi password.
  7. Train every employee on all of the above. Keep a signed record of training.

When you’re all set with the above processes, take the time and find, evaluate, and establish a medical enterprise grade secure messaging and image sharing solution. 

Cover Photo: "- Padlock -" by User:Nino Barbieri - Own work. Licensed under CC BY-SA 2.5 via Wikimedia Commons