ADIO Software, LLC (DBA ChiroHD) is committed to and has implemented many safeguards to ensure its services, websites, and data systems (collectively “Products'') are compliant with the regulations and conditions set forth in the Health Insurance Portability and Availability Act of 1996 (HIPAA). This Statement does not take the place of a Business Associate Agreement. ChiroHDis committed to continuous improvement to ensure its Products incorporate state-of-the-art information technology privacy and security measures. We are committed to keeping all PHI (Protected Health Information) entrusted to us private and secure. We have instituted policies and procedures to ensure this data remains confidential, including, but not limited to, the following:
Administrative Safeguards
Security is a top priority forChiroHD. Therefore, access to patient data is strictly enforced. All employees must sign a confidentiality agreement as a condition of their employment. Additionally, ChiroHD has initiated formal practices to assign appropriate personnel access to data, and actions are in place to govern the proper movement and handling of that data.
Physical Safeguards
The hosting provider maintains the security of their facility at all times, and no one is permitted to enter the structure without proper access. The primary hosting location is in Virginia and uses extensive data protection measures, including redundant hardware. All data is regularly backed up and stored in an encrypted state.
Encryption
ChiroHD uses end-to-end encryption(E2EE). HIPAA encryption requirements mandate that covered entities and business associates utilize end-to-end encryption. End-to-end encryption is a means of transferring encrypted data, such that only the sender and intended recipient can view or access that data. This is distinct from other means of data transfer wherein encrypted data is temporarily stored on an intermediary server.
Technical Safeguards
To further protect sensitive data, ChiroHD enforces unique software architecture that includes user identifications, various database audit logging, data integrity systems and verified backups, entity authentication programs, digital certificates, and increasing measures to provide better data integrity and encryption. We are committed to keeping all PHI and sensitive information secure and our systems and procedures up to date and in compliance with all related regulations.
For further information, refer to our Privacy Policy or contact us at support@chirohd.com
