Security and HIPAA

Data security is one of our highest priorities. Eko maintains HIPAA compliant policies, procedures, and technical safeguards for patient and customer data.

Policies and Procedures

Eko maintains industry recommended HIPAA compliant policies and procedures for securing patient data.


Eko uses HIPAA-compliant and NIST recommended 256 bit AES encryption using managed keys for patient data. Encrypted backups are taken daily.


We conduct nightly backups and regularly test our backups to ensure data recoverability.

BAA Agreements

Eko maintains BAA agreements with sub-contractors and our hosting providers to ensure HIPAA compliance.