Our data is stored in servers located in the country of origin and data never leaves the region. We take measured steps to safeguard and protect personal health information through integrated administrative, physical and technological safeguards. Adracare does not retain sensitive data in any public or private Adracare location other than those assigned for database management and quality assurance activities.
We are HIPAA, PHIPA, and PIPEDA compliant and we use end to end 256 bit AES encryption, the same grade of encryption used by financial institutions. We do not collect metadata so we do not share it. Adracare has never had a breach however, if a breach is to ever occur, we have a strict Data Breach Policy and a breach management protocol. You can read more about our security and privacy procedures here and you can review our compliance statement here.