Reperio Health and Amazon One Medical Redefine the Front Door to Primary Care | Click here to read the press release
Reperio Health and Amazon One Medical Redefine the Front Door to Primary Care | Click here to read the press release
Reperio Health, Inc. ("Reperio Health," "we," "us," or "our") is committed to protecting the confidentiality, integrity, and availability of information entrusted to us. This Security Policy describes, at a high level, how we safeguard information collected through our services, including ReperioKit and ReperioCare (collectively, the "Services").
This policy is intended to provide transparency into our security practices and complement our Terms of Service, Privacy Policy, and Notice of Privacy Practices.
Security is foundational to how Reperio Health designs and operates its Services. We apply consistent security practices across ReperioKit and ReperioCare to help protect personal information and health information throughout its lifecycle.
Reperio Health maintains a comprehensive security program aligned with the SOC 2 Type II Trust Services Criteria, which focuses on security, availability, confidentiality, and privacy. Our program is designed to identify, assess, and manage risks through a combination of policies, procedures, and technical safeguards.
We regularly evaluate the effectiveness of our controls through internal reviews and independent assessments, and we update our program as threats and technologies evolve.
Reperio Health implements administrative safeguards to support secure operations, including:
– Designated personnel responsible for security and privacy oversight
– Role-based access controls to limit access to systems and data based on job function
– Ongoing security awareness and training for personnel
– Documented policies and procedures governing information security
We use technical measures designed to protect information from unauthorized access, use, or disclosure, including:
– Encryption of information in transit and at rest
– Authentication mechanisms and access controls
– Logging and monitoring of system activity
– Secure configuration and change management practices
These safeguards are implemented in a manner consistent with industry standards and our risk management program.
Reperio Health relies on a combination of physical and environmental controls to protect systems and infrastructure, including:
– Secure facilities and controlled access to physical environments
– Use of reputable cloud service providers with robust physical security controls
– Policies governing the secure use of company devices
We assess and manage security risks associated with third-party vendors and service providers that support our Services. As part of our vendor management practices, we:
– Evaluate vendors prior to engagement
– Require contractual commitments related to confidentiality and security
– Monitor vendor relationships on an ongoing basis
Reperio Health maintains incident response procedures designed to identify, respond to, and mitigate security incidents. When appropriate, we notify affected individuals, customers, and regulators in accordance with applicable laws and contractual obligations.
While Reperio Health implements safeguards to protect information, users also play an important role in security. You are responsible for:
– Maintaining the confidentiality of your account credentials
– Using strong passwords and safeguarding login information
– Promptly notifying us of any suspected unauthorized access or security concerns
No system or security measure is completely secure. While we take reasonable steps to protect information, we cannot guarantee that unauthorized access, disclosure, or loss will never occur. Security threats continue to evolve, and we adapt our practices accordingly.
If you have questions about these Security Policies or wish to report a security concern, please contact us at:
Reperio Health, Inc.
4784 SE 17th Avenue, Suite 120
Portland, OR 97202
Email: privacy@reperiohealth.com
