Yes. Fully HIPAA-compliant with a signed BAA for every practice. All data is encrypted in transit and at rest, on infrastructure designed for healthcare.

Yes. The billing module shares the same HIPAA-secured infrastructure as the rest of Althea Smart EHR, end-to-end encryption, role-based access control, and full audit logging on every claim, edit, and adjustment. MD Synergy signs a BAA covering all PHI elements, including those touched by the optional RCM service.

Yes. All traffic moves over encrypted, audit-logged channels (TLS 1.2+) under signed data-sharing agreements between MD Synergy and each partner. Patient consent is captured per the practice’s policy and the partner’s opt-out terms. Every inbound record, query, and import is audit-trailed with user, timestamp, and patient context.