HIPAA Audits: What is it and what does it mean for you?

In the world of health tech, keeping your data safe is non-negotiable. Whether you're a user, a practitioner, or a carer, knowing that your information is in good hands is crucial. That's why we at Human Health are here to speak to you about something important: HIPAA compliance.

Now, you might be wondering, what exactly is HIPAA? Well, HIPAA is the US Health Insurance Portability and Accountability Act, and it's all about ensuring your privacy and the security of your medical information. It's a big deal for us.

Information Security Comes First

When it comes to your data, we don’t mess around. We're currently undergoing a thorough HIPAA audit to ensure that we're meeting rigorous standards of security and compliance. We use industry-leading tools like Vanta, a governance and compliance tool to make sure we're on top of compliance every single day.

Thinking Ahead To Keep You Safe

By undergoing regular HIPAA audits and penetration testing (a security assessment method where ethical hackers simulate cyberattacks on a system to identify and fix vulnerabilities before malicious hackers can exploit them), we're not just checking off boxes – we're making sure we live and breathe the things we say we do, and staying one step ahead by continually improving security. Human Health undergoes a HIPAA audit on a yearly schedule, conducted by Prescient Security, a US-based third party information security and audit firm. We undergo a HIPPA Type 2 Assessment, which focuses on our policies, procedures, and overall security posture as an organization.

We’re An Open Book

Transparency is key to building trust. We believe you should know exactly what we're doing with your data. For example - we will never sell your data to third parties, or use that data to target you with ads. Being upfront about our practices builds trust between us and you, our amazing community of users, partners, and investors. Learn more in our Privacy Policy here.

Setting the Standard

We're not just following the health startup crowd – we're leading the way. It's pretty rare for a young health tech company like us to dive headfirst into HIPAA compliance, considering 29% of US hospitals do not even have a privacy policy. But hey, we're not afraid to stand out. By making compliance a top priority, we're setting the standard for others to follow.

It's All About You

At the end of the day, it's all about you. Your privacy, your security, your peace of mind. That's why we're committed to excellence when it comes to HIPAA compliance.

So there you have it – HIPAA compliance in a nutshell. It's not just a bunch of red tape – it's our way of saying we've got your back, no matter what.

Thanks for being a part of our journey.

Gregorie Thomas
Founding Security Engineer