Third Party Software
Our team is dedicated to maintaining HIPAA compliance and staying up-to-date with modern system security trends. We respect and honor the families providing client level data being entered into IRIS and want those families to trust the securities and processes we have in place to protect their information. By providing the Third Party Software clause, our team is provided the flexibility of incorporating additional solutions with IRIS if and when the time comes. At this point, IRIS includes only two solutions that our team has classified as Third Party Software. The first is Google Analytics which captures user data used to help us better understand the usage of the system and general demographics of IRIS users (e.g., browser, OS, city). The second is Twilio SendGrid which is the email client used for automated correspondence from the IRIS system. At this time, no client level data are passed to or through these Third Party Software solutions. Therefore, we are confident we are upholding HIPAA compliance.
In the future, we may offer interoperability with similar referral systems which would most likely fall into our Third Party Software clause. Only IRIS partners and families who agree to share client level data would be allowed to participate in these services between referral systems. Our team is taking the necessary time to prioritize the safety and security of client level data before initiating these features.
Twilio Terms of Service: https://www.twilio.com/legal/security-overview
Google Analytics Terms of Service: https://marketingplatform.google.com/about/analytics/terms/us/