If you have Questions we are here to help.

Reach out and someone from the FlexNet-IQ team will be in touch

HIPAA POLICY

FlexNet-IQ Website HIPAA Policy

Last Updated: October 17, 2025

  1. 1. Our Commitment to Protecting Health Information

    FlexNet-IQ is committed to protecting the privacy and security of our users' protected health information ("PHI") in compliance with the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"). This policy outlines the security and privacy controls we have implemented to safeguard electronic Protected Health Information (ePHI) that is collected, transmitted, or stored through our website, FlexNetIq.com (the "Site").

  2. 2. Data Encryption

    We enforce strict encryption protocols to protect ePHI at all stages. All data transmitted between your browser and our servers is secured using industry-standard Transport Layer Security (TLS) 1.2 or higher. Furthermore, all ePHI stored in our databases and servers ("at rest") is maintained in an encrypted format to prevent unauthorized access.

  3. 3. Access Controls

    Access to ePHI is strictly limited to authorized personnel who require it to perform their job functions, such as licensed medical providers and support staff. We implement robust access controls, including unique user credentials, role-based access permissions, and mandatory multi-factor authentication (MFA), to ensure that only verified individuals can access sensitive information.

  4. 4. Secure Hosting and Data Centers

    FlexNet-IQ partners with a HIPAA-compliant web hosting provider to ensure that our servers and infrastructure meet the stringent physical, technical, and administrative security requirements of the HIPAA Security Rule. Our data centers are equipped with advanced security measures to protect against unauthorized physical access and environmental hazards.

  5. 5. Business Associate Agreements (BAAs)

    We enter into legally binding Business Associate Agreements (BAAs) with all third-party vendors and service providers (such as hosting providers or software vendors) that may have access to, handle, or transmit ePHI on our behalf. These agreements contractually require our business associates to implement and maintain the same high standards of security and privacy for ePHI that we uphold.

  6. 6. Auditing and Logging

    To ensure accountability and detect potential security incidents, we maintain detailed audit logs of all activities involving ePHI. These logs record who accessed the information, what actions were taken, and when the access occurred. Audit trails are reviewed regularly to identify and investigate any suspicious or unauthorized activity.

  7. 7. Data Integrity and Backups

    We have implemented comprehensive safeguards to protect the integrity of ePHI and prevent it from being improperly altered or destroyed. All ePHI is regularly backed up to secure, encrypted, and geographically redundant locations. This ensures that in the event of a system failure or disaster, we can recover and restore the information accurately and efficiently.

  8. 8. Secure Disposal

    When ePHI is no longer required for its intended purpose and retention is not mandated by law, we follow established procedures for its secure and permanent disposal. This includes methods such as cryptographic erasure and data wiping to ensure that the information cannot be recovered or reconstructed.

  9. 9. Changes to This Policy

    We may update this HIPAA Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any changes by posting the new policy on this page and updating the "Last Updated" date.

  10. 10. Contact Us

    If you have any questions about our HIPAA compliance or the security of your information, please contact us:

    FlexNet-IQ Security Officer
    Email: support@flexnetiq.com
    Website: FlexNetIq.com