Data privacy and security are fundamental to our core values
AHA's world-class range of tools and services ensure you have the best possible protection. Our decades-long experience in cybersecurity and threat intelligence are the basis for significant investments in data security, privacy, and governance.
HITRUST
HITRUST R2 certification showing we successfully manage cybersecurity risks by exceeding industry-defined information security requirements.
HIPAA
Complying with applicable health data laws, including HIPAA, is ingrained in our culture, processes, and team training.
SOC 2 Type 2
SOC 2 Type 2 is an approval of our controls for data security, availability, processing, integrity, confidentiality, and privacy.
Security at our core
Our Commitment to Data Security and Privacy
Our commitment to data security and privacy is rooted in our belief that everyone deserves to have their personal information securely protected. Our focus on data security drives our top priorities and rigorous processes to prevent unauthorized access and data breaches.
- Advanced Encryption Technology
- Strict Compliance
- Continuous Monitoring
Always Private
Our Approach to Patient Data Privacy
We believe that protecting patient privacy is as important as safeguarding the technical security of data. We take a measured approach to patient data privacy that includes transparency, informed consent, and responsible data use.
- Transparency on Data Collection and Use
- Informed Consent
- Responsible Data Use
Commitment to protecting health data
Our platform contains innovative technologies designed to minimize how much patient data we, or anyone else, can access from our network. We utilize robust security features that help prevent anyone except the patient and their authorized provider from being able to access health information.
We use patient data in ways that are aligned with its intended purpose and necessary to provide high-quality healthcare services. We take great care to ensure that data is not misused or mishandled in any way.
User Safety Check
User Safety Check ensures that clinical documents coming from different sources are matched to the right patient, thus minimizing risks to patient safety. Leveraging a proprietary patient index, we’re constantly monitoring the flow of documents to ensure accurate patient matching.
Secure Authentication
Your login and password credentials are never kept on a web server, so you don’t have to worry about password leaks compromising your accounts. Passwords are end-to-end encrypted.
Secure Sharing
Only patients and authorized healthcare providers can access health data. We have a robust authentication system to ensure that providers retrieving patient data are who they say they are. Patients can share their health data securely and seamlessly with other authorized users.
Tracking Defense
We do not participate in cross-site tracking and minimize any personal data passed to third parties. We never sell any health information to any parties, in any shape or format.
Global Cloud Protection
Any patient health information interpreted by AHA is backed up on our secure cloud platform. With HITRUST R2 and SOC 2 Type 2 certification, rest assured that patient data is safe, secure, and protected.
End-to-end Encrpytion
AHA keeps personal data protected with end-to-end encryption. Medical records, lab results, and AHA interpretations are encrypted in transit and at rest, preventing third parties from accessing sensitive health data.