Privacy and security are of the utmost importance to EngagedMD. For this reason, EngagedMD has embedded safeguards throughout the system to maintain your privacy and keep sensitive information secure. EngagedMD is compliant with HIPAA and GDPR regulations and certified under the EU-US Privacy Shield framework. We have physical, technical, and administrative safeguards in place to protect customer data and focus on security measures through internal audits and periodic security checks. Some of the security measures that are part of the application include:
- End-to-end encryption of data, in transit and at rest, using AES-256 and SHA-384
- Encryption and authentication of connection to site using TLS1.2, ECDHE-RSA with P-256, and AES256-GCM
- Strong password requirements with passwords stored utilizing per-user salting and complex hashing with multiple iterations.
- Periodic security assessments and vulnerability tests
- All data is backed up on a daily basis