Security is our priority

We keep your data safe by employing the following industry best practices:

HIPAA best practices

We’ve built our systems using HIPAA security configuration best practices, including specific configurations that address HIPAA’s privacy and security provisions.

Managed hosting

Our servers are located in protected data centers, with multiple layers of physical and electronic security. System up-time is continuously monitored internally as well as through third-party verification services.

Secure data transmission

All data transmitted between the browser and the platform use 256-bit Secure Socket Layer (SSL) encryption.

Enterprise-level encryption

All data are encrypted at rest using Advanced Encryption Standard (AES).

Vulnerability scanning

Daily vulnerability scans are conducted by third-party vendors to ensure that there are no vulnerabilities.

Backups

All data are backed up hourly and then transferred to two separate, secure data centers in different regions of the U.S.