Protecting your health information is our top priority. Learn how we maintain HIPAA-grade security standards.
Our Security Commitment
At happyMD, we implement HIPAA-grade security measures to protect your sensitive health information. Our platform is built from the ground up with security as a core principle, ensuring your data remains private and protected at all times.
We follow industry best practices and maintain strict compliance with federal regulations governing the protection of health information.
Security Measures
We implement comprehensive security measures to protect your health information:
- End-to-End Encryption: All data encrypted in transit (TLS 1.2+) and at rest (AES-256)
- Access Controls: Role-based access with multi-factor authentication
- Audit Logging: Comprehensive logs of all data access and modifications
- Regular Assessments: Ongoing security risk assessments and vulnerability testing
Technical Safeguards
- Unique User Identification: Each user has a unique identifier for tracking access
- Automatic Session Timeout: Sessions automatically terminate after periods of inactivity
- Data Encryption: Health information is encrypted whenever transmitted or stored
- Integrity Controls: Mechanisms to ensure data is not improperly altered or destroyed
- Transmission Security: Secure protocols protect data during electronic transmission
Administrative Safeguards
- Security Management: Policies and procedures to prevent, detect, and correct security violations
- Workforce Training: Regular security training for all employees who handle health data
- Contingency Planning: Data backup, disaster recovery, and emergency operation procedures
- Vendor Agreements: Written contracts with all vendors who access health information
- Incident Response: Documented procedures for responding to security incidents
Breach Notification
In the unlikely event of a data breach involving your health information, we are committed to:
- Notifying affected individuals promptly
- Providing details about what information was involved
- Describing steps we are taking to investigate and mitigate the breach
- Offering guidance on steps you can take to protect yourself
- Reporting to appropriate regulatory authorities as required
Your Rights
You have important rights regarding your health information:
- Right to Access: You can request copies of your health records
- Right to Amend: You can request corrections to your health information
- Right to Restrict: You can request restrictions on how we use or disclose your data
- Right to Confidential Communications: You can request we communicate with you in a specific way
- Right to Data Portability: You can request your data in a portable format
Security Contact
If you have questions about our security practices, wish to exercise your rights, or have concerns about how we handle your health information, please contact us:
- Email: support@happymd.co
- Mail: happyMD Security Team, Salt Lake City, Utah
Last Updated: December 2024