HIPAA Compliant
Meets all HIPAA Privacy and Security Rule requirements
256-bit Encryption
AES encryption for data in transit and at rest
HITRUST CSF
Healthcare information security framework certified
Enterprise-Grade Security
Every aspect of Avofax is designed to protect sensitive healthcare information and maintain HIPAA compliance.
256-bit AES Encryption
All fax transmissions and stored documents are encrypted using industry-standard 256-bit AES encryption, both in transit and at rest.
Business Associate Agreement
We sign BAAs with all healthcare customers at no additional cost. Our standard BAA meets or exceeds HIPAA requirements.
Secure Data Centers
All data is stored in secure US-based data centers with redundant backups, 24/7 monitoring, and enterprise-grade access controls.
Access Controls
Role-based access controls, multi-factor authentication, and detailed audit trails ensure only authorized users access PHI.
Audit Trails
Complete audit logs of all fax activity including sender, recipient, timestamps, and access history for compliance reporting.
Breach Notification
In the unlikely event of a security incident, we have established breach notification procedures that comply with HIPAA requirements.
How We Protect PHI
Encryption in Transit
When you send a fax, the document is encrypted using TLS 1.3 before leaving your device. It remains encrypted throughout transmission to our secure servers.
Secure Processing
Faxes are processed in our secure US-based data centers. Our systems automatically encrypt documents with 256-bit AES before storage.
Encrypted Delivery
Whether delivered via traditional fax protocol or to an email inbox, documents are transmitted securely. Email deliveries use encrypted attachments.
Access Control & Audit
Every access to stored faxes is logged. Role-based permissions ensure only authorized team members can view sensitive documents.
HIPAA Compliance FAQs
Everything you need to know about Avofax.
Still have questions? Contact our support team