Schedule Demo
DrChrono Security Policy
Last updated: July 19, 2019
EverHealth Solutions Inc. doing business as DrChrono. acts as a trusted confidential application service provider dedicated to providing a secure Internet and mobile service.
DrChrono employs a high degree of security consciousness. One of DrChrono’s priorities is to make reasonable efforts to ensure data security and be fully compliant with all HIPAA regulations. Access, integrity, availability, ownership, authorization, dependability, authentication, and confidentiality are all major considerations within the DrChrono Security Policy. Unfortunately, the Internet cannot be guaranteed to be 100% secure, and we cannot ensure or warrant the security of any information you provide to us.
DrChrono upholds its stringent Security Policy with the following security measures:
1. Role-Based Usage
DrChrono grants varying degrees of access to users with different levels of authority within a provider practice.
2. Encryption
All communication between you and the DrChrono server is secured by using SSL AES 256-bit encryption. This is the highest level of encryption currently available commercially.
3. Data Security
DrChrono takes measures to secure your data on our servers, in our data center. Our data center is both physically and electronically secured. Our servers are isolated from the Internet by using a firewall which is a hardware and software system that blocks access by unauthorized parties.
4. Confidentiality
DrChrono has internal policies that keep your data private and confidential. We will not share your data with any third party except as described in our Privacy Policy. Your data is your data only.
5. Login ID and Password
Access to your account is controlled by a login ID and a password, which you chose. Strict login ID and password rules help prevent unauthorized users from gaining access to data. We do NOT store a plain text version of your password. Your password is stored using a one-way hash key and verified using the same one-way hash every time you login, which means no one at DrChrono knows what password you have chosen. If you ever forget your password, we force you to choose a new one using an email verification check.