Compliance and Security


Your Trust Is Important To Us

Stroll Health is committed to protecting the privacy, confidentiality and security of all patient health information it handles.

Stroll Health’s privacy and security policies are consistent with the best practices established by HIPAA (The Health Insurance Portability and Accountability Act of 1996) and the Omnibus Rule (of 2013). We work closely with a leading security solutions consultant in the healthcare industry, Qi Express, to ensure that our HIPAA compliance is and remains up to date. Stroll Health has also gone through rigorous due diligence conducted by some of the largest Healthcare providers in the United States.

Stroll signs a Business Associate Agreement with all covered entities and business associates who provide Stroll with ePHI or to whom Stroll gives access to ePHI. Details of Stroll Health’s privacy practices are available in its Notice of Privacy Practices.

Stroll Health’s application meets all HIPAA requirements. Stroll Health’s application infrastructure is built on Google’s HIPAA-compliant platform and is encrypted under HTTPS standards in transit and with rotating AES 256-bit symmetric encryption at rest. Stroll Health software undergoes regular testing, monitoring and internal audits to ensure that no system irregularities exist. Plans are in place regarding Incident Response, Disaster Recovery and Risk Management. Procedures are in place to quickly remediate any vulnerabilities that arise or incidents that occur.

Questions? Please contact us