Filld handles patient data every day. Every layer of our stack is designed to keep that data secure, compliant, and completely under your control.
Filld is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA). We implement comprehensive administrative, physical, and technical safeguards to protect Protected Health Information (PHI).
We sign Business Associate Agreements (BAAs) with all customers before any PHI is processed through our system. This is not optional — it's required by law and we take it seriously. Contact us at info@filld.io to request a BAA before your trial begins.
For a downloadable BAA template and our full compliance documentation, visit our HIPAA BAA page.
All PHI and sensitive data is encrypted using AES-256 when stored. Patient contact fields use field-level AES-256-GCM encryption in addition to disk-level encryption.
All data transmitted between your browser, our API, and third-party services uses TLS 1.3. No unencrypted PHI ever leaves our infrastructure.
Role-based access ensures staff only see data relevant to their role. Owner, admin, and staff roles are enforced at the API layer. All access requires MFA within 4 hours.
Every patient record view, appointment change, and system action is logged with timestamp, actor, and IP. Logs are immutable and retained for compliance.
Hosted on Google Cloud (Cloud Run + Cloud SQL) in a HIPAA-eligible environment. No PHI touches our servers outside encrypted compute contexts.
All team members complete HIPAA training and sign confidentiality agreements before accessing any customer data.
We only collect and process the minimum PHI required to provide our services: patient name, phone number, and appointment data. We do not sync full medical records.
AI voice calls are processed in real time by Retell AI (HIPAA BAA on file). Call recordings are not stored by Filld. Only the structured call summary is written back to your PMS chart.
Patient data is retained only as long as needed for service delivery and compliance. Upon cancellation, all PHI is deleted within 30 days. You can request deletion at any time.
We never sell, share, or use patient data for marketing. Your data is used solely to operate your Filld services. Full stop.
We're happy to answer questions, provide documentation, or walk through our practices with your compliance officer.