HIPAA Mode

Healthcare data compliance controls and audit trail for your business.

Back to dashboard
HIPAA Applicable — PHI handling active

Compliance Checklist

4 pass / 2 fail / 2 pending
Encryption at rest
encryption
pass

PHI stored in databases and backups is encrypted.

Encryption in transit
encryption
pass

Browser and API traffic uses TLS 1.2+ and secure ciphers.

Business Associate Agreement
baa
pass

A signed BAA is in place with core infrastructure vendors.

Access logging
audit
pass

View, export, and modification events are logged.

Minimum necessary access
access control
pending

Review role scopes to minimize PHI exposure.

Workforce training
training
fail

Annual HIPAA training records are incomplete.

Breach notification policy
audit
pending

Finalize incident escalation and notification runbooks.

Device and media controls
access control
fail

Standardize secure disposal and device wipe procedures.

Encryption at Rest

active
Algorithm: AES-256
PHI is encrypted in databases and backups.

Encryption in Transit

active
Algorithm: TLS 1.3
All browser and API traffic uses modern TLS.

BAA Status

signed
Signed: Yes
Counterparty: MarketAgency Cloud Services LLC
Signed date: 2026-01-15
Expiry date: 2027-01-15

Role-based Access Control

RoleView PHIExport PHIModify RecordsManage HIPAA
Practice Owner
Front Desk
Clinician
Billing Staff

Data Retention Policy

patient_records
Retention: 7 years
Last purge:
Auto purge off
appointment_notes
Retention: 3 years
Last purge: 2026-04-01
Auto purge on
billing_records
Retention: 7 years
Last purge:
Auto purge off

Audit Log

Practice Owner · login
success
session · Today 08:55 · 198.51.100.10
Clinician · view_phi
success
patient_record · Today 08:42 · 198.51.100.11
Front Desk · export_phi
failure
appointment_list · Yesterday 15:20 · 198.51.100.12
Billing Staff · modify_record
success
invoice · Yesterday 14:05 · 198.51.100.13
Practice Owner · settings_change
success
hipaa_mode · Apr 19, 2026 09:00 · 198.51.100.14
Clinician · view_phi
failure
treatment_note · Apr 18, 2026 17:30 · 198.51.100.15

HIPAA Readiness Brief