Adracare is committed to protecting the privacy of our clients and ensuring the security of their personal health information. Here are some Q&As regarding our privacy and security policies:
Q: Is Adracare HIPAA, PIPEDA and PHIPA compliant?
A: Yes, the Adracare platform is HIPAA, PIPEDA and PHIPA compliant.
Q: Can the system record virtual sessions?
A: Unfortunately, video recordings are prohibited during virtual sessions with Adracare due to HIPAA, PHIPA, and PIPEDA compliancy.
Q: Can I delete a session note from a client’s records?
A: Session notes cannot be deleted on our system due to auditing purposes. All records are stored up to 7 years.
Q: Am I able to do virtual sessions with a client outside of Canada?
A: Both provider and patient must know the Canadian compliance policies and agree to the terms and conditions.
Q: Is Adracare’s secure messaging encrypted?
A: Yes, a replying from the secure messaging is encrypted. However, replying to the email@example.com is not encrypted.
Q: What are examples of HIPAA compliancy breaches?
A: Impermissible disclosure of protected health information, downloading PHI onto unauthorized devices, using SMS, Skype or email for disclosure of ePHI, etc.
Q: Can patients’ data be exported from the platform if a provider is leaving a practice?
A: Yes, patients’ data can be exported. Basic data exports such as; demographic or demographics can be exported by the provider. However, advanced data exports such as session notes, appointment history, etc. will require fee. Please contact firstname.lastname@example.org for more information.