🛡️ HIPAA Compliance Statement

Last Updated: July 31, 2025

Our Unwavering Commitment to HIPAA

Centi Clinic is unequivocally committed to protecting the integrity, confidentiality, and security of our customers' data. This includes all Protected Health Information (PHI) as defined by the Health Insurance Portability and Accountability Act (HIPAA). We provide a secure, compliant platform for healthcare providers to manage patient data with confidence.

How Centi Clinic Ensures Compliance

Our platform includes the following critical safeguards to protect PHI:

• 🔐 Data Encryption: All PHI is encrypted both in transit (using TLS 1.2 or higher) and at rest (using AES-256).
• 👤 Access Controls: We enforce strict, role-based access controls to ensure that only authorized clinic personnel can access PHI.
• 📝 Audit Trails: Comprehensive, immutable audit logs are maintained for all actions involving access to or modification of PHI.
• ✍️ Business Associate Agreement (BAA): Centi Clinic will sign a BAA with all covered entities, a mandatory requirement for HIPAA compliance.
• ☁️ Secure Infrastructure: Our services are hosted on secure, compliant cloud infrastructure that meets or exceeds industry best practices for security.

Your Responsibilities as a Covered Entity

As a healthcare provider, you are responsible for using Centi Clinic in a manner that complies with HIPAA. This includes managing your staff's user access appropriately, protecting your login credentials, and ensuring your own clinic's operational processes are compliant.

✉️ Request a BAA or Ask a Question

If you have questions about our HIPAA compliance or wish to request a Business Associate Agreement (BAA), please contact our compliance team at info@centiclinic.com.