The Health Insurance Portability and Accountability Act ("HIPAA") act is a privacy and security standard that any organization which stores health information must comply with.
ControlStack Inc. (dba OpenCal) has technology, privacy, security, and procedural standards which comply with HIPAA standards and protect patient/client information.
OpenCal had numerous technological safeguards that make it HIPAA compliant, including but not limited to 256-bit SSL encryption of all data transmissions within the OpenCal app and on the appointment booking screens, authentication verification standards, a industrial-strength firewall that prevents unauthorized access to our servers, a secure and redundant hosting environment, encrypted and limited server access by employess, and off-site daily backups.
All OpenCal technical support and management are trained in the privacy requirements of HIPAA and how to propertly handle sensitive information. As part of OpenCal's privacy policy, we do not share, sell, disclose, or provider patient/client identifiable patient information to third parties unless required by law. For further details please review our full Privacy Policy.
With any technology, it's also up to you as a healthcare provider to properly incorporate OpenCal into your business and employ your best judgement on your overall HIPAA compliance and internal safeguards. However, you can rest assured that you will meet your HIPAA compliance obligations while using OpenCal as your online scheduling tool.