Do you sign HIPAA, BAA, or other confidentiality agreements?
We maintain ongoing compliance with the U.S. Health Insurance Portability and Accountability Act (HIPAA) and is able to process, maintain and store protected health information for any entities restricted by these regulations. On request, we will sign a business associate agreement (BAA) with your organization. HIPAA support is currently only available on a Business Plan and above only.
What's involved in HIPAA compliance?
We run through annual compliance assessments and checklist as required by HIPAA.
Where is VPM customer data hosted?
Our entire infrastructure is hosted on Amazon Web Services (AWS), which is a highly scalable cloud computing platform with privacy and end-to-end security built in. AWS is also HIPAA compliant and will also sign a BAA with you if needed.
What sort of security is in place?
All VPM web application communications are encrypted over secure connection using 256 bit SSL encryption, which cannot be viewed by a third party and is the same level of encryption used by banks and financial institutions.
In addition, all physical mail is trashed in secure and locked trash bins. We have mobile shredding companies who shred all mail on-site.