HIPAA compliance and PHI

Have more questions? Submit a request

Headway holds clients information with the highest security. We treat personal and Protected Healthcare Information (PHI) privacy as a top priority and maintain HIPAA compliance through the following:

  • Our proprietary platforms and databases encrypt all client information.
  • Any messaging conducted through the Headway portal is end-to-end encrypted and executed through a secure and encrypted email relay.
  • Emails from the Headway team are encrypted if your email inbox supports encrypted messages.
  • We sign Business Associate Agreements (BAA) with all other platforms we use that may store PHI. This ensures our vendors also follow HIPAA compliance for our use.

We also have our privacy policy listed on our website.

Articles in this section