Health Data Protection
ATLAS Homecare follows HIPAA-compliant practices for handling Protected Health Information (PHI)
What is HIPAA?
The Health Insurance Portability and Accountability Act (HIPAA) is a federal law that establishes national standards to protect sensitive patient health information. ATLAS Homecare implements safeguards aligned with HIPAA requirements to protect your health data.
Our HIPAA Commitments
Administrative Safeguards
- Designated privacy and security officers
- Employee training on health data protection
- Access control policies and procedures
- Incident response and breach notification processes
- Regular risk assessments and audits
Physical Safeguards
- Secure data center facilities with controlled access
- Workstation and device security policies
- Proper disposal of electronic media
Technical Safeguards
🔐 Encryption
All health data encrypted in transit (TLS 1.3) and at rest (AES-256)
🔑 Access Controls
Role-based access with unique user identification and automatic logoff
📝 Audit Logs
Complete audit trails of all PHI access and modifications
🛡️ Integrity Controls
Mechanisms to authenticate and protect data integrity
Protected Health Information (PHI)
We protect the following types of health information:
- Medical conditions and diagnoses
- Medication information
- Doctor and healthcare provider information
- Appointment and treatment history
- Health-related communications
- Any information that could identify a patient
Your Rights Under HIPAA
You have the right to:
- Access: Request copies of your health information
- Amendment: Request corrections to inaccurate information
- Accounting: Receive a list of disclosures of your PHI
- Restriction: Request limits on how we use your information
- Confidential Communication: Request alternative communication methods
- Breach Notification: Be notified if your PHI is compromised
Business Associate Agreements
We maintain Business Associate Agreements (BAAs) with all service providers who may access PHI, including:
- Cloud infrastructure providers
- Communication service providers (SMS/Voice)
- Payment processors
- Any subcontractors handling PHI
Breach Response
In the unlikely event of a data breach involving PHI:
- We will investigate and contain the breach immediately
- Affected individuals will be notified within 60 days
- Breaches affecting 500+ individuals are reported to HHS
- We document all breaches and remediation steps
Note on HIPAA Coverage
ATLAS Homecare is designed as a personal health management tool for individuals and families. While we follow HIPAA-compliant practices, our service is primarily used by individuals for personal care management rather than by covered entities (healthcare providers, health plans, or clearinghouses).
If you are a healthcare organization interested in using ATLAS Homecare, please contact us to discuss Business Associate Agreements and enterprise compliance requirements.
Questions About HIPAA Compliance
For questions about our HIPAA practices or to exercise your rights:
Email: privacy@aisim.app
Subject: HIPAA Inquiry