The Health Insurance Portability and Accountability Act (HIPAA) of 1996 requires health care organizations (including HHAs) to demonstrate security measures that effectively protect the confidentiality of patient information. HHACompliance.com implements the most advanced security and encryption measures available for your compliance with HIPAA standards.

Like other health care organizations that transmit confidential patient information electronically (Medicare, HMOs, insurance companies, and physician practices, etc.), HHACompliance.com uses the SSL protocol ("secure sockets layer") to deliver server authentication, 128-bit data encryption, and message integrity.

SSL is layered beneath the application protocols HTTP, SMPT, Telnet, FTP, Gopher, and NNTP, and layered above the connection protocol TCP/IP. With SSL implemented on both client and server, your Internet communications are transmitted in an encrypted, tamper-proof format. Highly sensitive records are assured to arrive privately and unaltered to the computer you specify (and no other). Go to http://www.hcfa.gov/security/isecplcy.htm.

Only the person issued the User Name and Password and the System Administrator of the HHACompliance.com system have access to your Agency records. HHACompliance.com requires that the System Administrator sign the HHACompliance.com Confidentiality Agreement before any access to the system. The System Administrator-signed Confidentiality Agreement is on file and a copy is available upon request.