Security & Compliance
Filld is built from the ground up for healthcare. Your patient data is protected with enterprise-grade security.
HIPAA Compliance
Filld is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA). We understand the critical importance of protecting Protected Health Information (PHI) and have implemented comprehensive administrative, physical, and technical safeguards.
We sign Business Associate Agreements (BAAs) with all customers. This is required before any PHI is processed through our system. Contact us at security@filld.io to request a BAA.
How We Protect Your Data
Encryption at Rest
All data is encrypted using AES-256 encryption when stored in our databases.
Encryption in Transit
All data transmitted between your browser and our servers uses TLS 1.3 encryption.
Access Controls
Role-based access ensures staff only see the data they need. All access is logged.
Audit Logs
Comprehensive audit trails track all data access and system changes for compliance.
Secure Infrastructure
Hosted on SOC 2 Type II certified cloud infrastructure with 99.9% uptime SLA.
Employee Training
All team members complete HIPAA training and sign confidentiality agreements.
Data Handling Practices
Minimum Necessary Standard
We only collect and process the minimum PHI necessary to provide our cancellation filling service: patient name, phone number, and appointment preferences.
Data Retention
Patient data is retained only as long as needed for service delivery and compliance requirements. You can request data deletion at any time.
No Data Selling
We never sell, share, or use patient data for marketing purposes. Your data is used solely to fill your cancelled appointments.
Questions About Security?
Our team is happy to answer any security or compliance questions, provide documentation, or walk through our practices with your compliance officer.