We take privacy seriously.
At GrowPractice, we're committed to patient privacy and keeping health information secure.
We are fully committed to the privacy and security of our users' data. Our administrative, technical and physical safeguards are designed to secure and protect the information consumers trust us to use in service of their health goals. Under the Health Insurance Portability and Accountability Act (HIPAA), GrowPractice is defined as a 'business associate,' which is an individual or entity that is not a member of the 'covered entitys' (i.e., the healthcare provider's) workforce and performs certain functions involving the use or disclosure of protected health information (PHI) on behalf of the covered entity. As a business associate, GrowPractice is subject to, and committed to, all applicable HIPAA privacy and security requirements.
GrowPractice's Provider clients can configure and direct intake tools on the GrowPractice Platform to collect their patients' information. GrowPractice may collect other information and request certain permissions from Provider clients to ensure our products and services are functioning and for other permissible purposes.
GrowPractice's privacy and security procedures.
GrowPractice's privacy and security procedures include the following safeguards:
• GrowPractice does not share, sell, rent, disclose, or use PHI with 3rd parties for their direct marketing purposes.
• No mobile information will be shared with third parties/affiliates for marketing/promotional purposes. All the above categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
• PHI is secured through password protection and can only be accessed by authorized users within the healthcare practice.
• PHI is firewall-protected and under electronic surveillance 24 hours a day, seven days a week.
• PHI transmitted between the GrowPractice platform and GrowPractice's data centers is protected using industry-standard TLS (256-bit AES keys).
• Patient data is stored in a highly-secured data center, protected by multi-layer protocols. This means:
• The servers that house the data are stored in a secured building with multiple layers of physical security.
• At the network level, these servers are placed in a secure subnet protected by firewalls.
Contact.
If you have any questions, comments, or concerns about GrowPractice's privacy processes, or the use of this site in general, please contact us by email at privacy@growpractie.com.