Mend is a fully HIPAA-compliant service that complies with multiple security standards including but not limited to SOC 2 Type 2 + HITRUST opinion external certification to ensure that your information is always secure & protected.
Mend has obtained a business associate agreement (BAA) with your healthcare provider's office that allows them to share information with us, however, we do not keep recordings of video visits or visit documentation. Your healthcare provider is responsible for keeping all of your protected health information in their electronic health record or other appropriate information storage location.
For more information about how your healthcare provider stores or uses your information, please contact them directly to request a copy of your Notice of Privacy Practices. They may use Mend to share it with you!
If you are aware of a security incident that may affect Mend or its customers' information, please immediately notify us at infosec@mend.com.