HIPAA Compliance
The Bipolar IN Order platform maintains safeguards consistent with the Health Insurance Portability and Accountability Act (HIPAA) to protect your health information.
How We Protect Your Data
- AES-256 encryption for all data at rest and TLS 1.3 encryption for all data in transit
- Role-based access controls with multi-factor authentication for any access to health information
- Audit logging of all authentication events and data access
- Automated daily backups with defined retention policies
- Infrastructure hosted on HIPAA-eligible AWS services under an active Business Associate Agreement
- A documented Security Incident Response Plan and annual risk assessment process
Business Associate Agreements
We execute Business Associate Agreements (BAAs) with all covered entities and service providers that handle protected health information on our behalf.
Your Privacy
We do not use or disclose your health information except as described in our Privacy Policy or as required by law. We never sell or share your personal information.
For privacy questions or concerns, contact: BDORI – Privacy Officer at support@bipolarinorder.com