Your Data Security is Our Priority
Designed with healthcare data protection in mind
Our Security Approach
Claims Manager is built with healthcare privacy considerations at every level. While we're a growing product and cannot yet claim formal HIPAA compliance certification, we've implemented industry-standard security practices to protect your patient data.
Authentication & Access Control
- Auth0 Enterprise Authentication:
- Session-based Security:
- Multi-Factor Authentication (MFA):
Data Protection
- Encryption at Rest:
- Encryption in Transit:
- Multi-Tenant Data Isolation:
Infrastructure Security
- PostgreSQL Database:
- Docker Containerization:
- Regular Security Updates:
Application Security
- Input Validation:
- SQL Injection Protection:
- CSRF Protection:
What We're NOT (Yet)
In the interest of transparency, here's what we don't currently have:
- HIPAA Compliance Certification:: We're working toward this, but are not yet formally certified.
- SOC 2 Type II:: We're a young product and haven't completed a SOC 2 audit yet.
- Business Associate Agreements (BAAs):: Not yet available, but on our roadmap for enterprise customers.
We're committed to achieving these certifications as we grow. If formal compliance documentation is required for your practice, please contact us to discuss your needs.
Questions or Concerns?
Security is an ongoing process, and we take it seriously. If you have questions about our security practices or want to report a security concern, please contact us at security@example.com