HIPAA Compliance

Our commitment to protecting health information

Version: 2.0Effective: 1/1/2025Last Updated: 12/17/2025

Table of Contents

1. 1. Introduction

MEGA PROMOTING S.R.L. is committed to meeting Health Insurance Portability and Accountability Act (HIPAA) standards for U.S. healthcare sector clients. This page describes our compliance measures for Protected Health Information (PHI).

Effective Date: January 1, 2025

2. 2. Scope

HIPAA compliance applies to:

  • Healthcare clients (Covered Entities)
  • Business Associates of covered entities
  • Organizations processing PHI

Note: HIPAA compliance is available exclusively for Enterprise plan with signed Business Associate Agreement (BAA).

3. 3. Business Associate Agreement

For clients requiring HIPAA compliance:

  • BAA available upon request for Enterprise plan
  • Defines responsibilities of both parties
  • Specifies security measures
  • Includes breach notification procedures

Contact us to negotiate BAA: contact@kallina.info

4. 4. Safeguards

Administrative safeguards:

  • Designated security officer
  • Mandatory employee training
  • Documented policies and procedures
  • Periodic risk assessments

Physical safeguards:

  • Facility access control
  • Workstation security
  • Device and media control

Technical safeguards:

  • AES-256 encryption for PHI at rest
  • TLS 1.3 for PHI in transit
  • Role-based access control
  • Complete audit logging
  • Multi-factor authentication

5. 5. PHI Handling

Data minimization:

  • We collect only strictly necessary PHI
  • Limited retention per requirements
  • Secure deletion upon request

PHI Access:

  • Only authorized personnel
  • Need-to-know principle
  • Complete access auditing

6. 6. Breach Notification

In accordance with HIPAA Breach Notification Rule:

  • Covered entity notification: Within 24 hours
  • Investigation: Complete within 30 days
  • Documentation: Detailed incident report
  • Cooperation: Assistance with HHS and affected individual notifications

7. 7. Patient Rights

We support exercise of patient rights under HIPAA:

  • Right to access PHI
  • Right to amendment
  • Right to obtain accounting of disclosures
  • Right to request restrictions
  • Right to confidential communications

8. 8. Subcontractors

All our subcontractors who may access PHI:

  • Are subject to security assessments
  • Sign their own BAAs
  • Adhere to the same protection standards

9. 9. Limitations

Important:

  • HIPAA compliance requires Enterprise plan
  • BAA must be signed before PHI processing
  • Client is responsible for proper configuration
  • We do not guarantee compliance without active BAA

10. 10. Contact

For questions about HIPAA compliance:

MEGA PROMOTING S.R.L.
IDNO: 1019600021765
Email: contact@kallina.info (subject: "HIPAA Inquiry")
Phone: +373 61 066 888

Questions About This Policy?

If you have any questions about this hipaa compliance, please contact us.

contact@kallina.info

Other Legal Documents

Privacy PolicyTerms of ServiceCookie PolicyGDPR ComplianceData Processing AgreementService Level AgreementAcceptable Use PolicyRefund Policy
View all legal documents →

Rămâi la curent

Obține cele mai recente știri despre tehnologia de apelare AI și actualizările platformei

Made with ♡ by Kallina AI Team — 2025