Data Security and HIPAA Follow
Motivity is a secure, highly scalable, and reliable cloud-based application built to medical record standards.No Data Stored on Devices
Our software, platform and processes are all entirely HIPAA compliant. We enter into a HIPAA Business Associates Agreement with all our clients:
Encryption & Access Control
You control access to your data at a fine granularity through strict role-based access control on a user-by-user and learner-by-learner basis. Users are required to have strong passwords. All data is transmitted fully encrypted. In the cloud, data in Motivity is encrypted at rest for additional security. https://docs.microsoft.com/en-us/azure/security/fundamentals/encryption-atrest
When a user is not logged in, there is no chance of private information being found by a third party on the device, even if the device is shared. On client (end-user) devices, no data is stored locally. Data is kept exclusively in browser memory.. Data that is unnecessary for displaying information is removed from memory as soon as possible, as the user navigates through the application. All data is removed from memory when the user logs out from the application or closes the browser tab. Local browser caching mechanisms are not used.
Cloud Platform & Data Replication
The Motivity cloud service is built on Microsoft Azure. Data is replicated for durability and high availability via geo-redundant storage (GRS). https://docs.microsoft.com/en-us/azure/storage/common/storage-redundancy#geo-redundant-storage
Motivity provides tools for you to export all your data to your own local storage at any time on a learner-by-learner basis.