HIPAA Compliance Statement

1. Our Commitment to Data Privacy and Security

OnDemandPsychiatry, operated by MTP Psychiatry LLC, is firmly committed to safeguarding the privacy, security, and confidentiality of all user information.
As a U.S.-based psychiatric and psychopharmacology platform developed by Dr. Tanveer Padder, our App follows the strict standards outlined in the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and all applicable U.S. federal and state data protection laws.

Our mission is to empower healthcare professionals with Co-Pilot driven clinical support while ensuring that all information processed through the App is handled with the highest level of data integrity, confidentiality, and compliance.

2. HIPAA Compliance Overview

Although OnDemandPsychiatry is primarily a clinical decision-support and educational tool — not a direct patient care or data storage system — we adhere to HIPAA principles in all operations involving user information.

We ensure that:

• The App does not store or transmit Protected Health Information (PHI) unless it is de-identified or anonymized by the user. 
• All communication, data exchange, and analytics processes are securely encrypted and compliant with HIPAA Security Rule standards. 
• All internal systems follow “minimum necessary” data access principles to prevent unauthorized use or disclosure. 

If users choose to enter case-based or de-identified clinical data for educational purposes, they are fully responsible for ensuring that no PHI (such as patient name, date of birth, address, or identifying details) is included in any submission.

3. Data Security Measures

To maintain the security and confidentiality of all information, OnDemandPsychiatry employs a multilayered security framework that includes:

• Advanced Encryption (SSL/TLS): All data transmitted through the App is encrypted in transit and at rest. 
• Secure Cloud Hosting: Our servers are hosted in HIPAA-compliant U.S. data centers with continuous monitoring. 
• Access Controls: Strict user authentication protocols prevent unauthorized access to sensitive systems. 
• Regular Security Audits: We conduct routine vulnerability scans, compliance assessments, and data protection reviews. 
• Data Minimization: We only collect essential information needed to deliver the service effectively. 
• Automatic Session Timeouts: Idle user sessions are automatically terminated to prevent unauthorized access. 

4. Responsibilities of Users

Users of OnDemandPsychiatry are expected to:

• Maintain the confidentiality of their account credentials. 
• Avoid entering any identifiable patient information (PHI) into the App. 
• Comply with all HIPAA regulations and local privacy laws governing their clinical practice. 

The App provides tools for professional & educational use only, and each healthcare professional remains responsible for maintaining compliance with HIPAA and institutional policies when using the platform.

5. Data Use and Storage Practices

We collect and use only limited, non-sensitive data to enhance functionality, such as:

• User account information (name, email, credentials) 
• Subscription and payment data (securely processed via PCI-compliant gateways) 
• Anonymous usage analytics to improve app performance 

All stored data is encrypted, and we never sell, share, or rent user data to third parties. Any data shared with trusted vendors (such as hosting or payment providers) is done under strict confidentiality and data protection agreements.

6. Breach Notification Policy

In the unlikely event of a data breach involving personal or protected information:

• We will immediately assess and contain the incident. 
• Affected users will be notified without unreasonable delay as required under HIPAA’s Breach Notification Rule (45 CFR §§ 164.400–414). 
• A full report will be prepared outlining corrective actions and safeguards implemented to prevent recurrence. 

7. Third-Party Compliance

Any third-party service providers engaged by OnDemandPsychiatry (e.g., hosting partners, payment processors, analytics tools) are required to:

• Maintain HIPAA Business Associate Agreements (BAAs) when applicable. 
• Implement comparable data security standards. 
• Restrict access to data strictly for operational support purposes. 

8. International Users

While OnDemandPsychiatry is based in the United States, international users may access the platform. By using the App, you acknowledge and consent that your data will be transferred, processed, and stored in accordance with U.S. privacy and data protection laws, which may differ from those in your home country.

9. Continuous Compliance Improvement

We are dedicated to continuous improvement in privacy and cybersecurity. Our policies and systems are regularly reviewed and updated to stay compliant with evolving HIPAA regulations, NIST security standards, and best practices for healthcare technology.

10. Contact Information

If you have questions or concerns regarding HIPAA compliance, data protection, or privacy practices, please contact us at:

support@mtppsychiatry.com
MTP Psychiatry LLC
 

11. Acknowledgment

By using OnDemandPsychiatry, you acknowledge that you have read and understood this HIPAA and Data Protection Statement and agree to comply with all applicable privacy laws, ethical standards, and institutional regulations.