Data Security & Privacy
At blinkScribe, we prioritize the security and privacy of your data. Our comprehensive approach ensures your medical information remains protected at all times.
HIPAA Compliance
blinkScribe is fully HIPAA compliant, meeting all requirements for protecting sensitive patient health information.
Administrative Safeguards
We implement comprehensive policies and procedures to protect electronic health information, including regular risk assessments, staff training, and designated security personnel.
Physical Safeguards
Our infrastructure is protected by state-of-the-art physical security measures, including controlled access to facilities and equipment that houses patient data.
Technical Safeguards
We employ advanced encryption, access controls, authentication protocols, and real-time logging and audit trails to track all data access to ensure data integrity and secure transmission of PHI.
Our Security Measures
End-to-End Encryption
All data is encrypted both in transit and at rest using AES-256 encryption, ensuring your information remains secure throughout its lifecycle.
Role-Based Access Control
Our platform implements strict access controls, ensuring that only authorized personnel can access specific data based on their role and need.
Comprehensive Audit Trails
Every action within the system is logged and monitored, creating detailed audit trails that track who accessed what information and when.
Advanced Threat Protection
Our systems are continuously monitored for potential threats, with real-time detection and prevention mechanisms to safeguard against unauthorized access.
Secure Cloud Infrastructure
We utilize industry-leading cloud providers with SOC 2 Type II certification, ensuring the highest standards of security, availability, and confidentiality.
Regular Security Updates
Our systems are continuously updated with the latest security patches and improvements to address emerging threats and vulnerabilities.
Your Data Privacy Rights
Data Minimization
We collect only the information necessary to provide transcription services, including audio data, timestamps, and user preferences. Any non-essential metadata is automatically anonymized or discarded.
Patient Consent
We ensure proper consent mechanisms are in place for all data collection and processing activities, giving patients control over their information.
Data Retention
We retain data for a period of 24 months, after which they are permanently deleted unless required for compliance or legal obligations. Audit logs are separately maintained to ensure security monitoring. Upon request, users can delete their data immediately.
International Compliance
Our privacy practices comply with international regulations including GDPR and CCPA, providing comprehensive protection regardless of location.
Transparent Privacy Policy
Our detailed privacy policy clearly explains how we collect, use, and protect your data, written in plain language that's easy to understand.
Access and Control
Patients and healthcare providers have the right to access, correct, and in some cases delete their personal information through secure channels.
Your Data Rights
Access & Portability
You may request a copy of all transcriptions and metadata associated with your account. We provide this data in standard, machine-readable formats.
Deletion Requests
You can permanently delete all your stored data through the account settings or by contacting support@brainymed.com. Deletion requests are processed within 10 business days.
Have Questions About Our Security?
Our security team is available to address any concerns you may have about how we protect your data. Contact us for more information.