Security is at the heart of what we do. Our HIPAA-compliant fax service is built from the ground up to provide a secure and reliable means to transmit mission critical documents. In healthcare, this means safeguarding ePHI (electronic protected health information) and helping our customers adhere to the .
Read our Whitepaper: Four Misconceptions Regarding HIPAA Compliance and the Cloud
Documo implements a number of security features and operational measures that meet or exceed HIPAA requirements including the HITECH (Health Information Technology for Economic and Clinical Health) Act. Documo can be classified as a Business Associate under the HIPAA Privacy Rule and we will sign a BAA (Business Associate Agreement) for HIPAA fax deployments. Check out some of the ways we protect data below.
Fax protocol has inherent security features that make it an attractive means to transmit documents. We add to this by utilizing encryption technology whenever documents are transported to/from our network.
All sensitive data is encrypted at rest. This means it cannot be accessed in any usable form outside of our secure web portal.
Our web interface and API access is accessible only through secure HTTPS connections.
All document transmissions and log on/log off events are logged and recorded along with associated IP addresses.
All system access points require user authentication to access any secure data. We also implement auto-logoff features for additional protection. The system includes advanced administrative controls with customizable user permissions and roles.
All web servers, application servers, and databases are housed in state-of-the-art SSAE16 Type II secured facilities with redundant hardware, power, and internet connectivity.
The info above is just a glimpse into how we secure data. For more information on system, application, and operational security measures please visit our security page to learn more.