Robin uses military-grade, 256-bit encryption. All data is encrypted both at rest and in transit, completely compliant with HIPAA.
Robin's infrastructure is developed to withstand system failures and malicious attacks and to scale to your clinic's needs. We serve any size from solo practitioners to large hospital systems. Each clinic’s data lives in an isolated environment, partitioning risk from system failure or attack. Furthermore, we permanently delete all recordings with protected health information (PHI) after a quality assurance period of up to 30 days. All partners are covered under a Business Associates Agreement (BAA) as required.
Robin's security protocols ensure that all PHI is secure across every aspect of the business. Our engineers have specific domain expertise in cybersecurity and PCI compliance at large multinational organizations and deep understanding on enterprise-level key management and device certifications. All data is encrypted at rest and in transit using the latest industry standards. Our entire team has extensive healthcare experience and every team member must complete HIPAA training and background checks before joining.
Robin maintains a secure device management system for all devices. We enforce policies for encrypted hard drives, minimum password requirements, remote wiping, IP-designated access, device certifications and key management, and two-factor authentication for all users and systems. Robin uses an encrypted user password store and maintains centralized auditing capability for all users and devices.
Devices are pre-configured with Wi-Fi credentials and room assignments for easy installation. No long-term obligations. No minimum-use requirements.