HIPAA Compliance

Our commitment to protecting your health information

HIPAA Compliance Overview

TekMeDoc is fully committed to maintaining HIPAA compliance and protecting the privacy and security of Protected Health Information (PHI).

HIPAA Compliant Platform

TekMeDoc operates as a HIPAA-compliant Business Associate and has implemented comprehensive administrative, physical, and technical safeguards to protect PHI in accordance with HIPAA regulations.

Security Safeguards

We implement multiple layers of security to protect your health information

Administrative Safeguards

  • • Security management processes
  • • Workforce training
  • • Access management
  • • Security incident procedures

Physical Safeguards

  • • Facility access controls
  • • Workstation security
  • • Device and media controls
  • • Secure data centers

Technical Safeguards

  • • End-to-end encryption
  • • Access controls
  • • Audit controls
  • • Integrity controls

What is HIPAA?

The Health Insurance Portability and Accountability Act (HIPAA) is a U.S. federal law that establishes national standards for protecting sensitive patient health information. HIPAA requires healthcare providers, health plans, and their business associates to implement safeguards to protect the privacy and security of Protected Health Information (PHI).

Our Compliance Measures

Encryption

All PHI transmitted through our platform is encrypted using industry-standard encryption protocols (TLS 1.3) to ensure data security during transmission. Data at rest is also encrypted using AES-256 encryption.

Access Controls

We implement strict access controls to ensure that only authorized personnel can access PHI. All access is logged and monitored, and users are authenticated using secure methods.

Business Associate Agreements

We enter into Business Associate Agreements (BAAs) with all third-party vendors who may have access to PHI, ensuring they also comply with HIPAA requirements.

Regular Audits

We conduct regular security audits and risk assessments to identify and address potential vulnerabilities in our systems and processes.

Employee Training

All employees who handle PHI receive comprehensive HIPAA training and are required to complete annual refresher courses to stay current with regulations and best practices.

Your Rights Under HIPAA

As a patient, you have the right to:

  • Access your health information
  • Request amendments to your health records
  • Request an accounting of disclosures
  • Request restrictions on how we use or disclose your information
  • Request confidential communications
  • File a complaint if you believe your privacy rights have been violated

Breach Notification

In the unlikely event of a security breach that may have compromised your PHI, we will notify you and the appropriate authorities as required by HIPAA regulations. We have incident response procedures in place to quickly identify, contain, and remediate any security incidents.

Compliance Monitoring

We continuously monitor our compliance with HIPAA requirements and update our policies and procedures as needed. Our compliance program includes regular risk assessments, employee training, and third-party audits.

Contact Us

If you have questions about our HIPAA compliance or wish to exercise your rights under HIPAA, please contact us:

TekMeDoc Privacy Officer

Email: privacy@tekmedoc.com

Phone: (+234) 901 769 8929

Address: Lagos, Nigeria