HIPAA Compliance & Security

Our commitment to protecting health information

Precision Smiles CAD Technologies Inc. is committed to maintaining the highest standards of data protection and privacy. Our platform is designed to meet HIPAA requirements for US clients and PIPEDA/PHIPA requirements for Canadian clients.

We understand that dental professionals entrust us with sensitive patient information. This page outlines our comprehensive approach to security and compliance.

Encryption
  • AES-256 encryption for all data at rest
  • TLS 1.3 for all data in transit
  • End-to-end encryption for file transfers
  • Encrypted database connections
Access Control
  • Role-based access control (RBAC)
  • Unique user identification
  • Automatic session timeout
  • Multi-factor authentication support
Audit Logs
  • Comprehensive activity logging
  • User access tracking
  • Data modification history
  • 6-year log retention
Breach Notification
  • 72-hour notification commitment
  • Incident response procedures
  • Breach investigation protocols
  • Remediation documentation
Cloud Infrastructure
  • HIPAA-compliant cloud providers
  • SOC 2 Type II certified infrastructure
  • Geographic redundancy
  • Regular security assessments
Personnel Security
  • Background checks for all staff
  • Regular HIPAA training
  • Confidentiality agreements
  • Least privilege access principle
Secure Deletion Policies

When data is no longer needed, we follow strict secure deletion procedures:

Case Files

Cryptographic erasure and physical deletion from all storage systems

Backups

Automated purging from backup systems within retention period

Certification

Written certification of destruction provided upon request

Business Associate Agreement (BAA)

For US clients, we provide a comprehensive Business Associate Agreement that outlines our responsibilities under HIPAA. The BAA is automatically presented during onboarding for US-based accounts.

Security & Compliance Inquiries

For questions about our security practices or to request compliance documentation, please contact our security team:

[email protected]