At CrowdHealth, your privacy and the security of your personal information are foundational to everything we do. Here's how we protect your data and privacy:
Your privacy is critically important to us. CrowdHealth will never sell your data. If your information needs to be shared with trusted third parties to provide you with service, we ensure this occurs only under strict Non-Disclosure Agreements (NDAs) and HIPAA-compliant Business Associate Agreements (BAAs). We share only what’s necessary, when it’s absolutely required to serve you.
We safeguard your information using the principle of "least privilege," meaning access to your data is limited strictly to those who need it to serve you. Additionally, we utilize bank-grade security protocols. All your data is encrypted both when it's stored ("at rest") and when it's being sent between systems ("in transit").
Every year, CrowdHealth undergoes rigorous third-party security penetration testing. The results of these tests and certifications are published openly.
Security at CrowdHealth isn't passive. We actively protect our systems with continuous monitoring:
We adhere strictly to HIPAA guidelines because it aligns closely with our core commitment to common-sense security and privacy practices. To further strengthen our security culture, all CrowdHealth employees complete mandatory HIPAA and banking compliance training.
Should you have any questions about our security measures, privacy practices, or need to report a security incident, please contact us directly at security@joincrowdhealth.com.
At CrowdHealth, your privacy and the security of your personal information are foundational to everything we do. Here's how we protect your data and privacy:
