PRIVACY & SECURITY

Built For Data Protection

At PatientIQ, keeping patient health information secure is our highest priority. We go above and beyond to ensure true security for your organization's most sensitive data.

Request A Demo
Vulnerability Scanning
Malware Detection
Intrusion Detection
Monitoring
Audit Logging
Advanced Encryption

Our Platform is Engineered to Support a

Secure & Compliant Infrastructure

We have partnered with Datica, an industry leader in HIPAA-compliant & HITRUST certified hosting infrastructure, to ensure the highest level of security. All customer data is stored in a HITRUST certified data environment maintained by industry experts.

HITRUST Certified Hosting Infrastructure

(Powered by Datica)
PatientIQ Application
PatientIQ Database

Protect Your Data with Multiple Layers of

Strong Encryption Standards

Our backend technology incorporates secure, encryption standards and protocols to guarantee maximum data protection for patients and healthcare organizations.

Encrypted At-Rest

Platform data is encrypted at rest

Encrypted In-Transit

Platform data is encrypted in transit using TLS 1.2

Safeguard Sensitive Patient Data with

Advanced Application Security

PatientIQ uses enterprise-grade security, monitoring, and access controls. We have strict protocols built into our technology to avoid security issues so you can focus on what matters most, your patients.

Multi-Layered Approach to Authorization
Ensures easy-to-manage controls around user access with our RBAC (role-based access controls) and permissions system

Users are privileged at an organization level using one to many roles each containing configurable permissions

A user’s access to patient PHI data is controlled by explicit permissioning to each physician’s patient population

Access to pathway or project specific data required explicit membership and can be controlled at the user level.

Patient users are limited to viewing a subset of their own patient data.


Strong User Authentication Mechanisms:
Automated logoff due to inactivity
NIST recommended best practices for password requirements
Automatic account lockouts after multiple retries
Optional advanced security configurations available including 2 Factor Authentication, Single Sign On using SAML 2.0, and access suspensions for dormant users

We Have Fostered a Company Culture of

Operational Security

Our company mandates are centered around keeping sensitive data safe and secure.

Company Mandates

Company mandates the use of strong passwords, device encryption, multi-factor authentication on all applicable systems & runs anti-malware endpoint protection.

Staff Training

All PatientIQ employees are trained annually on HIPAA and best practices.