formisoft
FAQs/Security & HIPAA

Is Formisoft HIPAA compliant?

Yes. Formisoft is designed to meet HIPAA's administrative, physical, and technical safeguard requirements:

  • 256-bit AES encryption at rest and TLS 1.3 in transit
  • Role-based access controls with four permission levels
  • Complete audit logging of all data access and modifications
  • US-only data hosting
  • Secure token generation for magic links
  • Bcrypt password hashing and HMAC-signed webhooks

Ready to try Formisoft?

The simple patient engagement platform for healthcare practices.

Try it free

Related questions

How is patient data encrypted?

What is audit logging and how does it work?

What roles and permissions are available?

Is a Business Associate Agreement (BAA) available?

Where is my data hosted?