Ensure Security and Control With Linguix

Architecture overview

Linguix ensures the secure transfer, storage, and processing of all data, including PHI, through our state-of-the-art cloud infrastructure. Our applications are built to meet the most stringent security requirements.

Linguix applications:

• Browser extensions for Google Chrome, Safari, Mozilla, and Edge.
• Linguix Web App, compatible with most browsers.
• Desktop apps for Mac and Windows.
• Mobile Keyboards for iOS and Android.

Our server infrastructure is hosted by Microsoft Azure, a U.S.-based provider, and adheres to best-in-class security practices. Only select servers and network ports are accessible from the internet, all of which are protected by firewalls and load balancers. All sensitive processing, including PHI, occurs within Linguix's private network in a highly secure environment.

Data encryption and management

At Linguix, the security of your data is our top priority. All data, including PHI, is encrypted both in transit and at rest:

• Encrypted Connections: Data transferred between client applications and our servers is encrypted using SSL/TLS 1.2 and above, ensuring secure transmission.
• Encrypted Storage: All stored data, including backups, is encrypted using AES-256, a standard compliant with HIPAA’s Security Rule.
• Segregated User Data: Data is segregated by user account, ensuring that PHI remains isolated and secure. Access is only granted to authorized users through secure authentication.

HIPAA Compliance

Linguix is fully compliant with HIPAA’s Security, Privacy, and Breach Notification Rules, ensuring that your PHI is handled with the utmost care and diligence.

• Access Controls: We enforce role-based access control (RBAC) and multi-factor authentication (MFA) to limit access to PHI to authorized personnel only.
• Audit Logs: All access to PHI is logged and monitored to detect unauthorized access. These logs are regularly reviewed in accordance with HIPAA’s requirements.
• Breach Notification: In the event of a data breach involving PHI, Linguix will promptly notify affected individuals, regulatory bodies, and other necessary parties, in compliance with HIPAA’s Breach Notification Rule.

On-premise installation

For coptionustomers requiring additional security and privacy measures to ensure compliance with HIPAA and other local regulations like GDPR, Linguix offers an on-premise installation.

This includes:

• A dedicated server hosting your own Linguix installation
• A custom version of Linguix’s web app and browser extension, ensuring that data processed via these platforms is kept entirely within your own secure environment.
• Content processed via browser extensions is never saved, ensuring that PHI remains confidential.

All maintenance of on-prem installations is performed by Linguix engineers under a support contract.

How we protect against internal threats

Security policies and training

All Linguix employees, contractors, and part-time staff undergo rigorous security training, with a special focus on HIPAA regulations. Employees must agree to and follow strict Internal Data Security and Privacy policies before gaining access to internal systems.

Access revocation

When employees leave Linguix, access to all internal systems is immediately revoked through a standardized process, ensuring that no unauthorized personnel can access PHI or other sensitive data.

Linguix’s security program

Linguix’s professional security team, comprising both in-house employees and security consultants, oversees a robust security program that adheres to HIPAA standards.

Key initiatives include:

• Secure software development practices, ensuring the protection of PHI.
• Regular penetration testing and vulnerability scanning to identify and fix potential security risks.
• Detailed audits and security certifications to maintain compliance with HIPAA and other regulatory requirements.
• An incident reporting procedure that promptly addresses any security concerns.

Secure software development

Linguix follows industry-leading practices for secure software development to maintain HIPAA compliance:

• Code Reviews: All code is peer-reviewed, scanned for vulnerabilities, and tested before deployment.
• Encryption and Key Management: We use best-in-class tools for encryption, account management, and certificate control.
• Access Control: Our development platform uses single sign-on and mandatory 2-factor authentication to ensure that only authorized personnel can access sensitive data.

How we protect data

Authorizing employee access

Linguix follows the principle of least privilege. Access to internal systems is limited, with all access requests thoroughly documented and approved. Only authorized personnel with a legitimate need can access systems that store PHI.

Production System Security

All systems that interact with PHI are housed separately from other Linguix services, ensuring strict access control. Private keys are used to secure access, and all actions are logged.

Customer data privacy

Linguix adheres to strict privacy standards, including HIPAA and GDPR. We never collect or process personal data, including PHI, without a lawful reason. When it is no longer needed, data is securely deleted in compliance with these regulations.

Enterprise customers may contact their account representative to request data deletion or additional privacy measures.

How we share data with third-party vendors

Linguix works with several third-party vendors to provide services such as server hosting, email, and analytics. All vendors undergo strict security assessments to ensure they meet HIPAA’s Business Associate Agreement (BAA) requirements, ensuring the confidentiality and integrity of any PHI processed.

Linguix will continue to review and improve our security policies and practices, ensuring that we maintain the highest standards of HIPAA compliance and data protection.