Security & Compliance

For owners

For doctors

HIPAA and Data Handling

How Doctora protects patient data and maintains HIPAA compliance

4 min readUpdated January 1, 2025

Our Commitment to Security

Doctora is committed to protecting patient health information (PHI) in compliance with HIPAA regulations.

Data Encryption

All data is encrypted in transit using TLS 1.3
Data at rest is encrypted using AES-256
Audio recordings are encrypted immediately upon capture

Access Controls

Role-based access control (RBAC)
Multi-factor authentication required
Audit logging for all data access

Data Retention

Audio recordings are deleted after processing
Documentation is stored according to your retention policy
You maintain full ownership of your data

Business Associate Agreement

Doctora signs BAAs with all healthcare clients to ensure HIPAA compliance.

Was this article helpful?

Related Articles

Doctora in 10 Minutes

A quick overview of Doctora and how it transforms your practice documentation

EHR Write Jobs Getting Stuck

Resolve issues when documentation isn't syncing to your EHR

Installing the Chrome Extension

Step-by-step guide to installing and configuring the Doctora Chrome extension

Network & Audio Requirements

Network and hardware requirements for optimal Doctora performance

Back to Security & Compliance Browse all articles