Our Commitment to HIPAA Compliance
Company Periscope takes the privacy and security of protected health information (PHI) seriously. When our AI receptionist services are used by medical or dental practices, we function as a Business Associate under HIPAA and are committed to full compliance with applicable regulations.
Business Associate Agreement (BAA)
A signed BAA is available to all medical and dental clients upon request. Contact us at support@companyperiscope.com to request your BAA before going live with patient-facing calls.
What is PHI?
Protected Health Information (PHI) includes any information that can identify a patient and relates to their health condition, healthcare treatment, or payment for healthcare. This includes names, phone numbers, dates, addresses, and medical information discussed during calls.
How We Handle PHI
- All call data is transmitted using TLS 1.2+ encryption
- PHI is stored in HIPAA-compliant cloud infrastructure
- Access to PHI is restricted to authorized personnel only
- Call recordings and transcripts containing PHI are retained per your BAA terms
- We do not sell, share, or use PHI for any purpose outside of delivering your contracted services
- Breach notification procedures are in place per HIPAA requirements
Security Safeguards
We implement the administrative, physical, and technical safeguards required by HIPAA's Security Rule, including:
- Encryption of all PHI at rest and in transit
- Role-based access controls limiting who can view patient data
- Audit logging of all access to PHI
- Regular security assessments and staff training
- Incident response and breach notification procedures
Your Practice's Responsibilities
As a Covered Entity, your practice remains responsible for:
- Obtaining patient consent for call recording where required by state law
- Configuring your AI appropriately to avoid unnecessary PHI collection
- Informing patients that calls may be answered by an AI assistant
- Signing a BAA with Company Periscope before handling patient calls
Applicable Clients
HIPAA compliance provisions apply specifically to dental practices, medical practices, mental health providers, and other Covered Entities under HIPAA. Home services, legal, and other non-healthcare clients are not subject to HIPAA but benefit from the same security standards.
Contact Our Compliance Team
For questions about our HIPAA compliance, to request a BAA, or to report a potential security concern, contact us at support@companyperiscope.com with the subject line "HIPAA Inquiry."