HIPAA Compliance
Unified Desk is built from the ground up to meet HIPAA requirements. We understand the importance of protecting patient health information (PHI).
Security & Compliance Features
End-to-End Encryption
All data is encrypted in transit (TLS 1.3) and at rest (AES-256).
Secure Infrastructure
Hosted on SOC 2 Type II compliant cloud infrastructure with 24/7 monitoring.
Access Controls
Role-based access control (RBAC) ensures minimum necessary access.
Audit Logging
Comprehensive audit trails for all PHI access and modifications.
Business Associate Agreement (BAA)
Unified Desk enters into Business Associate Agreements (BAAs) with all covered entities. Our BAA outlines:
- Permitted uses and disclosures of PHI
- Safeguards we implement to protect PHI
- Breach notification procedures
- Terms for return or destruction of PHI
- Subcontractor compliance requirements
To request a BAA, please contact us at compliance@unified-desk.com.
Our Compliance Practices
Administrative Safeguards
- Designated Privacy and Security Officers
- Regular workforce training on HIPAA requirements
- Documented policies and procedures
- Regular risk assessments and audits
Physical Safeguards
- Data centers with 24/7 security and access controls
- Workstation security policies
- Device and media controls
Technical Safeguards
- Unique user identification and authentication
- Automatic session timeout
- Encryption of all PHI
- Regular integrity checks and backups
Questions or Concerns?
If you have any questions about our HIPAA compliance practices or need to report a potential security concern, please contact our compliance team.