Data privacy and security are fundamental to our core values

AHA's world-class range of tools and services ensure you have the best possible protection. Our decades-long experience in cybersecurity and threat intelligence are the basis for significant investments in data security, privacy, and governance.


HITRUST R2 certification showing we successfully manage cybersecurity risks by exceeding industry-defined information security requirements.


Complying with applicable health data laws, including HIPAA, is ingrained in our culture, processes, and team training.

SOC 2 Type 2

SOC 2 Type 2 is an approval of our controls for data security, availability, processing, integrity, confidentiality, and privacy.

Security at our core

Our Commitment to Data Security and Privacy

Our commitment to data security and privacy is rooted in our belief that everyone deserves to have their personal information securely protected. Our focus on data security drives our top priorities and rigorous processes to prevent unauthorized access and data breaches.
Always Private

Our Approach to Patient Data Privacy

We believe that protecting patient privacy is as important as safeguarding the technical security of data. We take a measured approach to patient data privacy that includes transparency, informed consent, and responsible data use.

Commitment to protecting health data

Our platform contains innovative technologies designed to minimize how much patient data we, or anyone else, can access from our network. We utilize robust security features that help prevent anyone except the patient and their authorized provider from being able to access health information.

We use patient data in ways that are aligned with its intended purpose and necessary to provide high-quality healthcare services. We take great care to ensure that data is not misused or mishandled in any way.

User Safety Check

User Safety Check ensures that clinical documents coming from different sources are matched to the right patient, thus minimizing risks to patient safety. Leveraging a proprietary patient index, we’re constantly monitoring the flow of documents to ensure accurate patient matching.

Secure Authentication

Your login and password credentials are never kept on a web server, so you don’t have to worry about password leaks compromising your accounts. Passwords are end-to-end encrypted.

Secure Sharing

Only patients and authorized healthcare providers can access health data. We have a robust authentication system to ensure that providers retrieving patient data are who they say they are. Patients can share their health data securely and seamlessly with other authorized users.

Tracking Defense

We do not participate in cross-site tracking and minimize any personal data passed to third parties. We never sell any health information to any parties, in any shape or format.

Global Cloud Protection

Any patient health information interpreted by AHA is backed up on our secure cloud platform. With HITRUST R2 and SOC 2 Type 2 certification, rest assured that patient data is safe, secure, and protected.

End-to-end Encrpytion

AHA keeps personal data protected with end-to-end encryption. Medical records, lab results, and AHA interpretations are encrypted in transit and at rest, preventing third parties from accessing sensitive health data.

Contact Us.

If you are interested in learning more about our data security practices or have any questions, please do not hesitate to contact us. Our team is always ready and available to help.