Compliance
HIPAA
PHI safeguards for USA healthcare teams.
For covered entity customers in the United States, VitaScribe supports HIPAA-aligned administrative, physical, and technical safeguards, including Business Associate Agreements.
Technical safeguards
- Encryption for data in transit and at rest
- Unique user accounts and role-based permissions
- Audit logs for sensitive account and documentation activity
Administrative safeguards
- Security risk review and operating procedures
- Workforce access management
- Incident response and escalation practices
Physical safeguards
- Cloud infrastructure with controlled datacenter access
- Device and workstation security expectations
- Infrastructure provider certifications and monitoring
Business Associate Agreements
VitaScribe enters into BAAs with eligible USA covered entity customers so PHI handling obligations are documented before rollout.