Security is essential

Protection for yourself and your patients or clients

Your patients & clients share their most sensitive personal information with you

It’s your duty to ensure that information is secure. 


To ensure maximum security of patient/client personal health & financial information, we have gone above and beyond standard government mandated security measures.

chats & Messaging

Assure your clients and patients that all chats, messages, video calls, and other communications are encrypted and private.

Health Records

Confidently store and share with clients, patients and other care providers, personal health information, including sensitive test results, health conditions, and confidential health records, in a safe auditable manner.

Payment records

Securely store financial data, like credit card numbers and bank account profiles necessary for payments.

Legal Compliance

Follow regulations and requirements set forth by insurance companies, accreditation institutions, and government bodies.

We've closed all the security gaps that are surprisingly so common in virtual care.

Security Compliance


Plant-Based Docs is compliant with US Health Insurance Portability and Accountability Act (HIPAA) regulations. That includes the Privacy, Security, & Breach Notification Rules and the Administrative & Physical Safeguards.

EPCS Certified

Certified by the DEA to support Electronic Prescribing for Controlled Substances (EPCS). 


Our payment processor is certified as Payment Card Industry (PCI ) Service Provider Level 1, the highest possible level.


The General Data Protection Regulation (GDPR) is a regulation that requires businesses to protect the personal data and privacy of EU citizens for transactions.


Our infrastructure protects data in compliance with the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA).

many Providers do not realize the fines they could face using insecure text, video & email services.

We Maintain The Highest Levels Of
Security & Privacy

Physical Security

Our servers are housed in facilities that are protected by biometric security, surveillance systems, and security guards – 24 hours a day, 7 days a week, 365 days a year.


Data Security

We store data at SOC Type 1- and SOC Type 2-certified facilities.

Disaster Recovery

We have a disaster recovery plan in place, including redundant power supplies and data backup.

Transmission Security

Our website data is encrypted with 256-bit Secure Socket Layer (SSL) technology, whether you’re on a desktop, laptop, tablet, or phone. We use cryptographic keys to authenticate data transfer.

Financial Encryption

We process credit card transactions using secure encryption on a Level 1 PCI-compliant network. We tokenize and encrypt all payment information, and we do not store it ourselves.

Audit Controls

System wide audit logs track and record all access to records and document all communications, with both patients and referring providers.  This includes SSH logs, SQL query logs, platform backend activity logs, and Apache logs.


Are you a Plant-Based Provider? Click here to join now.


* indicates required
Are you a Physician or Healthcare Practitioner? *