Compliance
HIPAA Compliance
Front Desk is built from the ground up with HIPAA compliance in mind. We protect your patients' data with enterprise-grade security.
Security Safeguards
Our technical, administrative, and physical safeguards protect PHI at every layer.
AES-256 Encryption at Rest
All data, including call recordings, transcripts, and patient information, is encrypted with AES-256 at rest.
TLS 1.2+ In Transit
All data transmitted between your browser, our servers, and third-party services is encrypted with TLS 1.2 or higher.
Role-Based Access Control
Granular permissions ensure team members only access data relevant to their role and location.
Audit Logging
Comprehensive audit trails track all access to PHI, including who accessed what data and when.
AWS Infrastructure
Hosted on AWS with SOC 2, ISO 27001, and HIPAA-eligible services. Data centers comply with physical security standards.
Data Retention Controls
Configurable retention policies let you control how long call recordings and patient data are stored.
Automatic Backups
Encrypted backups with point-in-time recovery ensure your data is never lost.
Employee Training
All Front Desk employees complete HIPAA awareness training and sign confidentiality agreements.
Business Associate Agreement
We provide a signed Business Associate Agreement (BAA) to all healthcare practices on a paid plan. The BAA process is simple and fast.