HIPAA Compliance Statement

Protecting Patient Data with Care and Compliance

Depentech is committed to helping medical and wellness practices safeguard patient information in accordance with the Health Insurance Portability and Accountability Act (HIPAA).

While Depentech is not a covered entity under HIPAA, we act as a Business Associate for many clients and follow the same administrative, technical, and physical safeguards required to protect Protected Health Information (PHI).

Our Commitment to HIPAA Alignment

  • Data Security: All sensitive information transmitted or stored through our managed systems is encrypted in transit and at rest using industry-standard methods.
  • Access Controls: Only authorized personnel with legitimate business needs have access to systems containing client or PHI-related data.
  • Monitoring and Auditing: Continuous monitoring and regular reviews ensure adherence to our internal security policies and compliance standards.
  • Business Associate Agreements (BAA): We provide BAAs to healthcare clients that outline our responsibilities for protecting PHI under HIPAA regulations.
  • Employee Training: Every team member handling client data receives ongoing security and HIPAA awareness training.

Shared Responsibility

Depentech provides the technology, monitoring, and safeguards necessary to help you maintain HIPAA compliance, but compliance itself is a shared responsibility between your organization and ours.

Clients remain responsible for their own internal policies, staff training, and data handling practices that occur outside Depentech-managed systems.