EHealthVoice from EHealthMed is built from the ground up for healthcare compliance. Review our security practices, download our policies, and execute your Business Associate Agreement.
Full Security Rule compliance
Controls aligned with SOC 2 criteria
Data at rest & in transit
High availability infrastructure
EHealthVoice maintains rigorous security controls across every layer of our platform to protect patient data and ensure regulatory compliance.
Comprehensive policies and procedures governing the protection of electronic Protected Health Information (ePHI), including access controls, breach notification, workforce training, and audit logging.
7 PoliciesSecurity controls aligned with all five Trust Service Criteria — Security, Availability, Processing Integrity, Confidentiality, and Privacy — with documented technical implementations.
28 ControlsStandard BAA template available for all customers. Organization owners can review and electronically sign with full audit trail including IP address and timestamp.
Ready to SignDetailed HIPAA policies, SOC 2 controls matrix, BAA template, and sub-processor information are available to authorized users. Sign in with an administrator account to view full compliance documentation.
EHealthVoice has implemented security controls aligned with all five SOC 2 Trust Service Criteria (Security, Availability, Processing Integrity, Confidentiality, and Privacy). Our controls matrix documents comprehensive specific controls with their technical implementations.
We are currently in the process of engaging an independent CPA firm to conduct a formal SOC 2 Type I audit, which will verify our control design at a point in time. Following successful Type I attestation, we plan to pursue SOC 2 Type II certification, which evaluates control effectiveness over a sustained observation period (6-12 months).
Our compliance team is available to answer questions, provide additional documentation, or schedule a security review call.