HIPAA Compliance Policy — FabrixMed
Effective Date: January 1, 2024
1. What is HIPAA and Why It Matters
HIPAA (the Health Insurance Portability and Accountability Act) is a U.S. law designed to protect your health information and keep it private and secure. At FabrixMed, we follow HIPAA rules carefully to ensure your information is safe when using VideoConsults.
2. Who We Are in HIPAA Terms
- When we provide technology to healthcare providers and hospitals, we are a Business Associate under HIPAA.
- The healthcare providers and hospitals using our platform are Covered Entities.
3. How We Protect Your Health Information
We use multiple safeguards to protect your Protected Health Information (PHI):
- Administrative safeguards: We train our team regularly on privacy rules and limit access only to those who need it.
- Physical safeguards: Our servers are housed in secure data centers with strong access controls.
- Technical safeguards: We use strong encryption when your data is stored and transmitted, require secure login methods, and keep detailed logs of who accesses your information.
4. Working with Our Partners
We only work with partners who sign agreements promising to protect your data (called Business Associate Agreements or BAAs). This includes cloud providers, payment processors, and video infrastructure vendors.
5. What Happens if There’s a Data Breach?
If your data is ever exposed accidentally or through unauthorized access, we have clear steps to quickly notify affected parties and authorities as required by law — usually within 60 days.
6. Your Responsibilities
To help us keep your information secure:
- Don’t share your login credentials.
- Use the platform responsibly and follow your organization's security policies.
7. Contacting Our HIPAA Officer
If you have questions about your privacy rights or how we protect your data, you can contact our HIPAA Officer at: [email protected]