Security & HIPAA Compliance
We take your security and HIPAA compliance
We are pleased to announce we have successfully undergone and completed the Service Organization Control (SOC 2) Type 2 assessment and demonstrated effectiveness of controls with respect to SOC 2 criteria established by the American Institute of Certified Public Accountants (AICPA).
Infinx products are designed with compliance in mind and built from the ground up to be fully HIPAA compliant. With our cloud data storage and electronic document interfaces, you have access to your secure data across RCM and EHR platforms. Your data and PHI embedded in layers of security: EDI-compliant solution stores your data on Amazon cloud, using standard 64-bit encryption or 256-bit encryption.
Patient Health Information
All PHI stored in our Infinx Prior Authorization Software are fully encrypted, per HIPAA guidelines, and stored on Amazon Web Services S3 cloud servers, at secured locations, providing SOC2 compliance documentation.
Patient data is never stored longer than necessary, with regular archiving and purging.
Access to Data
All files are password-protected and access-controlled, as necessary. Preauthorization team members are proficient in HIPAA-compliant standards and protocols, via formal training and periodic reviews.
New software updates are thoroughly reviewed and tested for airtight data security, while all technical infrastructure and procedures are regularly audited throughout the year.
Our goal is to protect your patient information while improving their overall experience. We do that by improving your payment lifecycle processes allowing you to spend more time with your patients and ultimately capture more revenue.