Last Updated: November 3, 2023
We understand that the security of your patients' information is of the utmost importance. DashQuill is fully HIPAA-compliant and meets all privacy and security rules set by the Health Insurance Portability and Accountability Act of 1996. We have established and will continue to maintain administrative, physical, and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information (PHI). We use state-of-the-art security protocols for encrypting and transmitting data, and only store PHI on servers and databases hosted by Microsoft Azure. You can read more about Microsoft's security practices and HIPAA compliance here.
The sole purpose of patient data stored on DashQuill's systems is to provide service to your office and allow your team to transfer it into your EMR (electronic health records). Employees at DashQuill cannot view, use, or edit patient data in any way. If an intake form is deleted via the dashboard, all patient data (excluding email addresses and phone numbers, which are used for sharing the forms) is permanently deleted and cannot be recovered.
In order to assist your office with the patient intake process, DashQuill's services may collect and store protected health information (PHI) for your office in our systems. If your business is a covered entity under the HIPAA Privacy/Security Rule, please email firstname.lastname@example.org and we would be happy to sign a business associate contract.