To begin with, all Telehealth sessions are ephemeral: meaning the meeting only exist while the meeting is actually taking place. The meeting gets created when the first participant joins and the meeting is destroyed when the last participant leaves.
Attendees must have an invitation from a clinician to join a meeting. The invitation to the client receives contains a secure meeting link that is randomly generated. As long as this meeting link is not shared by a participant, no other parties will be able to discover or join the meeting.
The client can also login to the portal using their username and password to join a scheduled meeting. The username and password method provides another layer of security for the client.
No audio or video content is ever recorded or stored on any TherapyMate system.
Clients can also improve their own computer side security by using Microsoft Edge (Chromium 83 version), Google Chrome, Brave and Opera. These are most secure Internet browsers currently available.
Confidence from third-party certification
No competitor has achieved our level of advanced, third-party verified security and compliance certifications.
- FCC Consumer Proprietary Network Information (CPNI) compliance
- Health Insurance Portability and Accountability Act (HIPAA) compliant
- National Institute of Standards and Technology – NIST 853 R4
- Federal Information Security Management Act (FISMA) compliant
- U.S./EU Privacy Shield-certified
- ISO 27001:2013 and ISO 9001 certified
- Certified PCI-DSS 3.2.1 SAQ-D Solution Provider
- Data-in-motion encryption with Session Initiation Protocol (SIP) over Transport Layer Security (TLS) and Secure Real-time Transport Protocol (SRTP)
- Complies with GDPR
- Independently audited annually