Security & Compliance

HIPAA Compliance

Our commitment to protecting patient health information

Our Commitment to HIPAA Compliance

HexoraX is committed to maintaining the highest standards of privacy and security for Protected Health Information (PHI). We understand that healthcare data is sensitive and requires the utmost care in handling, storage, and transmission.

Administrative Safeguards

  • Designated Privacy and Security Officers
  • Comprehensive workforce training programs
  • Regular risk assessments and management
  • Documented policies and procedures
  • Business Associate Agreements (BAAs) with all clients
  • Incident response and breach notification procedures

Physical Safeguards

  • Secure data center facilities with 24/7 monitoring
  • Access controls and visitor management
  • Workstation security policies
  • Device and media controls
  • Environmental controls and disaster recovery

Technical Safeguards

  • End-to-end encryption (AES-256) for data at rest and in transit
  • Role-based access controls (RBAC)
  • Multi-factor authentication (MFA)
  • Unique user identification and automatic logoff
  • Comprehensive audit logging and monitoring
  • Integrity controls and transmission security

Business Associate Agreements

HexoraX enters into Business Associate Agreements (BAAs) with all healthcare clients who use our services to process, store, or transmit PHI. Our BAAs ensure that:

  • We appropriately safeguard all PHI
  • We report any security incidents promptly
  • We ensure our subcontractors comply with HIPAA requirements
  • We return or destroy PHI upon termination of the agreement

Security Certifications

Our infrastructure and processes are regularly audited and certified:

SOC 2 Type II
HIPAA Compliant
ISO 27001

Breach Notification

In the unlikely event of a data breach affecting PHI, HexoraX will:

  • Notify affected covered entities within 24 hours of discovery
  • Conduct a thorough investigation
  • Implement remediation measures
  • Provide documentation as required by law
  • Support notification to affected individuals and regulatory bodies

Contact Our Security Team

For questions about our HIPAA compliance program or to request our BAA:

Email: security@hexorax.ca
Phone: +1 (888) 439-6729

Ready to get started? Contact us to discuss your compliance requirements and receive a copy of our BAA.

Stay Ahead in Healthcare Innovation

Subscribe to our newsletter for the latest insights on AI-powered healthcare solutions.

No spam. Unsubscribe anytime.