Data Security
Website Security
The Nudge website (built using Wix) is compliant and certified with the highest international privacy and security regulations, including SOC 2 Type 2, and is ISO 27001 and ISO 27018 certified. Our website and communications incorporate security for your personal data and our website architecture.
We safeguard the communications between you and The Nudge by using the industry's best practices for encryption, including Transport Layer Security 1.2 (TLS) and Hypertext Transfer Protocol Secure (HTTPS) over public networks. As minimum safety measures for our server, network, and website, we use various industry standards and best practices from the Center for Internet Security (CIS) and Cloud Security Alliance (CSA).
E-mail Security
E-mail communication with our customers is secured with an Advanced Encryption Standard (AES) cipher with a 128-bit or stronger key. All stored data is encrypted using an (AES-256) Advanced Encryption Standard 256-bit key. All data transmitted between you and The Nudge is encrypted in transit and at rest, including when you're not connected to WiFi. The Nudge has an active BAA (business associate agreement) with Google and we support and uphold the integrity of the The Health Insurance Portability and Accountability Act of 1996 (HIPAA).
Private Messaging and Telehealth Security
All private messaging and telehealth visits are done through the Spruce Health app. Spruce is the leading platform for HIPAA-compliant communication and care outside of the exam room. The app offers HIPAA-grade encryption and other controls for all information exchanged, both when the information is stored and when it's being transmitted.
*Your privacy is not for sale. Under no circumstances will The Nudge sell your personal information to anyone, for any reason, at any time.
Copyright © 2024. All right reserved by TheNudge, LLC
