HIPAA Compliance

ResidentHealth360 LLC

Last Updated: December 20, 2025

Website: www.residenthealth360.com

ResidentHealth360 LLC (“ResidentHealth360”) is committed to safeguarding the privacy, confidentiality, and security of health information in accordance with the Health Insurance Portability and Accountability Act of 1996 and its implementing regulations (“HIPAA”).

1. Our Role Under HIPAA

ResidentHealth360 operates as a Business Associate, providing a software platform to covered entities such as assisted living, memory care, and healthcare organizations. We do not act as a healthcare provider and do not provide medical advice.

2. Business Associate Agreements (BAAs)

ResidentHealth360 processes Protected Health Information (“PHI”) only pursuant to an executed Business Associate Agreement (“BAA”) with the applicable covered entity.

PHI is used and disclosed solely as permitted under the BAA and HIPAA
No PHI should be submitted to the platform without an active, executed BAA

3. HIPAA Safeguards

We maintain administrative, technical, and physical safeguards designed to meet HIPAA Security Rule requirements, including:

Encryption of data in transit and at rest
Role-based access controls and least-privilege enforcement
Multi-factor authentication where appropriate
Audit logging and monitoring of system activity
Security incident detection and response procedures

4. Workforce and Access Controls

Access to systems containing PHI is restricted to authorized personnel with a legitimate business need. Workforce members receive security and privacy awareness training appropriate to their role.

5. Subcontractors and Service Providers

ResidentHealth360 may utilize third-party infrastructure and service providers to support the platform. Subcontractors that may access PHI are subject to contractual confidentiality and security obligations, including HIPAA-aligned terms where required.

6. Incident Response and Breach Notification

ResidentHealth360 maintains documented incident response procedures. In the event of a confirmed breach of unsecured PHI, we will notify the applicable covered entity in accordance with the terms of the BAA and HIPAA Breach Notification Rule.

7. Privacy Policy Relationship

This HIPAA Compliance page should be read in conjunction with our Privacy Policy and Terms of Service. In the event of any conflict, the applicable BAA governs PHI handling.

8. Contact

Questions regarding our HIPAA compliance practices or security posture may be directed to:

ResidentHealth360 LLC
Email: privacy@residenthealth360.com
Security: security@residenthealth360.com

This page is provided for informational purposes only and does not constitute legal advice or a guarantee of compliance. HIPAA obligations are governed by applicable law and contractual agreements.