The Health Insurance Portability and Accountability Act (HIPAA) sets the standard for sensitive patient data protection. Companies that deal with protected health information (PHI) must have physical, network, and process security measures in place and follow them to ensure HIPAA Compliance. Covered entities (anyone providing treatment, payment, and operations in healthcare) and business associates (anyone who has access to patient information and provides support in treatment, payment, or operations) must meet HIPAA Compliance. Other entities, such as subcontractors and any other related business associates must also be in compliance.
According to HIPAA, if you belong to the category of “covered entities” or “business associates,” and you handle “protected health information (PHI),” you and your business are required to be HIPAA-compliant. “Covered entities” describes U.S. health plans, health care clearinghouses, and health care providers.
Referria only collects the following data provided by the client (you): Employee Names, Employee ID is provided (at random) unless changed by the client (you), hours worked weekly, bi-weekly or an aggregate. Referria reports include total bonuses paid to employees (weekly, monthly, quarterly, YTD and lifetime), Turnover rates, User/Employee logins, Employee referral report.
Referria does not share or sell any platform data.