HIPAA & SECURITY
PainlessForms.com operates as a “Business Associate” under part 103 of the HIPAA Privacy Rule. Additionally, our online process was designed to remove any HIPPA liability for our customers.
When a patient logs in for their appointment, we get the patient’s permission to share their protected health information (PHI) ONLY with you, our customer. This places the responsibility for the security and privacy of their data squarely on us, as we have a direct HIPAA agreement with the user, assuring them that we will protect their data and only disclose their PHI to their provider.
You Can’t Hack What is not Here
The nature of the PainlessForms.com service is passive in nature. After the PHI is passed to your office, the data is purged from our systems. Since we do not have a storehouse of archived personal data, our servers log fewer hack attempts when compared to more valuable targets.
Privacy and Security Audit Protocol
Painless Forms passed its annual administrative, physical and technical safeguards audit on April 20th, 2018.
- Additional HIPAA Safeguards