MouthWatch Security


Security and patient privacy are top priorities in the MouthWatch system. Here is an overview of the security precautions that we have incorporated:


Data Encryption (in transmission)

Data Encryption - In Transmission   Industry standard AES 256-bit encryption is used at all points where patient information is transmitted between a patient or professional and our servers. This includes full encryption for information shared by providers and patients, as well as encrypted transmission of uploaded/downloaded documents and images

Data Encryption (at rest)

Data Encryption - At Rest   All patient data, images and videos are stored in encrypted database tables using standard AES 256-bit. Full drive encryption is in place for all hard drives storing patient information as well.

HIPAA-Compliant Web Hosting

HIPAA Compliant Web Hosting  

We use an enterprise-class hosting solution that provides all necessary tools for maintaining HIPAA-compliant security measures and patient privacy. Our encryption standards ensure that our hosting solution has no access to sensitive patient information at any time.

Physical security measures are also strongly enforced, with our data centers staffed 24x7 by trained security guards, and authorized access given on a least privileged basis. Environmental systems are designed to minimize the impact of disruptions to operations. Multiple geographic regions and Availability Zones allow data to remain available during major natural disasters or system failures.


HIPAA-Compliant Business Standards

HIPAA-Compliant Business Standards  

In accordance with the latest HIPAA guidelines and regulations, suppliers of telemedicine software solutions are required to maintain HIPAA-compliant security and business practices. Further, healthcare providers are required to enter a Business Associates Agreement (BAA) with their telemedicine software supplier. We maintain HIPAA standards and enter into a mutual BAA with each participating dentist.