myTherapyOS is built for pediatric therapy clinics that handle sensitive patient information every day. Here you'll find our policies, compliance documentation, and how to reach our security team.
How we protect ePHI โ access controls, encryption, audit logging, backup, incident response, and our HIPAA compliance program.
Read Security Policy โHow we collect, use, and protect personal information for users of myTherapyOS and visitors to our website.
Read Privacy Policy โOur HIPAA compliance overview โ signed BAAs with AWS, Anthropic, and Sinch, and our approach to the HIPAA Security and Privacy Rules.
Read HIPAA Overview โIf you believe you've found a security vulnerability or have a concern about data handling, please contact our security team directly.
security@mytherapyos.com โmyTherapyOS acts as a Business Associate under HIPAA when processing ePHI on behalf of covered entity customers (therapy clinics). A signed Business Associate Agreement (BAA) is required before using myTherapyOS to store or process real patient data.
To request a BAA, or if you have questions about our compliance documentation, contact us at security@mytherapyos.com.