Security
Security is ingrained in everything we do
Wellthy goes above and beyond compliance. We've created a culture around security and privacy, and the experience we've built for our partners and customers is secure by design.
Just a few of the ways we’re looking out
HIPAA compliance
Wellthy conducts an annual security risk assessment and biennial HIPAA security risk assessment.SOC 2 certification
Wellthy’s platform is SOC 2 Type 2 certified, ensuring our controls supporting security, privacy, confidentiality, integrity, and availability of data are operating effectively.Ongoing risk assessments
Wellthy undergoes regular third party penetration testing and thorough security and privacy audits.Security tools and features
Families have access to secure features like two-factor authentication (2FA) and encrypted document storage.Internal education programs
Security and privacy training is an integral component of the onboarding process for all Wellthy team members.Privacy & security FAQs
-
We take your privacy very seriously. You can see our privacy policy here. We will never share your information without your consent.
-
We use 256-bit encryption, the same level used by banks. We force HTTPS for all traffic to ensure data is encrypted and to protect against man-in-the-middle attacks.
-
Yes, all users of the Wellthy platform can enable Two-Step Verification. Two-Step Verification allows you to add an extra layer of security to your account. After you set up Two-Step Verification (which can be done in the account settings) you will sign in with something you know (your password) and something you have (a code from the authenticator app on your phone). All members of our Coordination Team are required to have Two-Step Verification turned on.
-
Only the service team at Wellthy and your Care Coordinator. With your consent, your Care Coordinator may share information with doctors, family, caregivers, or other providers in order to arrange care. We will only share your information if it's in your best interest and with your signed consent to do so.
-
We never store payment information. We use Stripe, a secure third-party to handle all payment transactions.
-
We offer customizable controls for customers to choose per person which aspects of their care project individuals can access (i.e. your in-home aide will only have access to a specific task for providing updates to your family).
-
Please see our responsible disclosure policy.
Relief is near
Start your Care Project and talk to us about how we can help. It's free to sign up.