[esseti]

Out of curisoty, how have you implemented the security/hipaa compliance?

> We care deeply about patient and clinician privacy as well. Our platform is HIPAA-compliant and protected by end-to-end encryption. We work with independent third parties to verify our compliance and security. Patients own their health data and have the right to all of it. Any analysis we do is always on anonymized and aggregated information and never traceable back to an individual or clinic. We openly state that our mission to advance new treatments to the patients and doctors we work with and have found that the whole field is motivated to help - everyone realizes it’s an all-hands-on-deck movement.

do you have further infos?

[luciayhuang]

We've appointed a Chief Security Officer within our startup that oversees security and HIPAA compliance. We work with Vanta (W18) to ensure compliance (they have automation software and compliance dashboards) and have a third-party auditor as well. I am happy to have our engineering team to tell you more if you wanted to learn! Feel free to message lucia@osmind.org