A Solution for Every Medical Practice

Simple Startup, Easy to Use.

GET STARTED FOR FREE

HIPAA-Compliant Medical
CRM Security.

ePHI is Individually Identifiable Health Information transmitted electronically by a covered entity (your medical practice) or a business associate (Influx MD). To be considered ePHI, the transmitted package must contain an identifier, such as a patient's name, address, or telephone number, and some form of health data, such as medical conditions, treatments, or insurance information.

Hosting and Data Protection for ePHI.

A qualified independent third-party auditing firm audits the Influx MD hosting environment. A copy of the latest audit is available to you on request. While most Influx users store little to no ePHI, protecting all data, regardless of legal requirements, is the standard for Influx MD. From the hosting environment to the application programming and strict employee protocols, Influx MD treats all data as ePHI for maximum security.

Influx MD CRM Security

Key Features:

Firewall

Influx uses hardware, software, and web application firewalls. A firewall secures the Influx application network using a set of rules that control the traffic that's entering and exiting it.

Encrypted VPN

Offsite access to the Influx servers is only available through an encrypted virtual private network or VPN. We restrict access to the VPN to specific IP addresses and trained Influx team members.

Offsite Backups

Influx stores encrypted data at US-based offsite storage facilities as a primary disaster recovery strategy. Data backups ensure no data loss in the event of a failure in the central servers.

Isolated Virtual Environments

Your CRM and lead tracking data is encrypted and stored in databases wholly separated from all other user data.

SSL Certificates

Influx uses Secure Sockets Layer (SSL) certificates in all situations where we transmit data between servers or websites. SSL encrypts data during transmission to ensure intercepted traffic is unusable.

Business Associate Agreement (BAA)

A signed HIPAA business associate agreement is available for all Influx users who wish to show HIPAA compliance within their organization.

HIPAA and HITEC Compliance

HIPAA is a set of rules and regulations to safeguard sensitive health information. Hospitals and healthcare organizations must comply with HIPAA regulations to keep confidential patient information secure.

The rules include:

  1. Protecting patients' right to privacy.
  2. Ensuring the security of protected health information (PHI).
  3. Enforcing security protocols.
  4. Initiating investigations in case of a data breach.
  5. Notifying the appropriate authorities in case of a violation.

Additionally, the Omnibus Rule was added to HIPAA to address cybersecurity concerns and define legal liabilities for organizations regarding HIPAA.

  • Maintain confidentiality, integrity, and availability of ePHI
  • Monitor, detect and, protect against anticipated threats to data security
  • Anticipate and protect data from prohibited uses or disclosure
  • Document and certify compliance of workers

Influx MD's infrastructure is SOC 2 and SOC 3 certified, HIPAA and HITECH audited.

client logo Cedar Park Surgeons
client logo Flowers Hospital
client logo Northside Hospital
client logo Palmyra Surgical
client logo Medcal Weight Loss NY
client logo Medcal Scottsdale Weight Loss