HIPAA-aligned
We align with HIPAA standards and are SOC2 certified
End-to-end encryption
All your insurance and healthcare data is encrypted end-to-end
You own your data
We’ll never share or sell your data and you can delete it at any time
How we use your information
When you upload a bill or link your account, we use that information to review your case and help where we can. That includes checking for billing issues, verifying your insurance processed correctly, and identifying any opportunities to reduce what you owe.
Your data is only used to resolve your healthcare issues. It’ll never be sold, rented, or shared with advertisers or data brokers.
Securely integrated with 1,300 insurance and patient portals
We securely connect to insurance and patient portals across medical, dental, and vision giving you a unified way to access, verify, and act on claims data, with end-to-end encryption and single sign-on.
Your account and your data
Review, update, or remove it at any time.
Request data deletion — email us at privacy@grantedhealth.com to request full deletion of your personal data. We'll confirm within 30 days.
Delete your account — go to Settings → Account → Delete Account, or contact our support team and we'll handle it for you.
Family accounts — members added to your family profile have their own separate HIPAA authorization. You can remove a family member's access at any time.
Bruce Ortega
Encryption
All your data, including uploaded bills and insurance records, is encrypted at rest (AES-256) and in transit (TLS 1.2+).
Access controls
Access is limited to team members who need to work on your case. Permissions are role-based, with MFA and least-privilege policies in place.
HIPPA authorization
Before we act on your behalf, you sign a HIPAA authorization. This gives you visibility into how your information is used.
SOC 2 Certification
We maintain SOC 2 certification with independently audited controls across security, availability, and confidentiality.
Constant monitoring
Vanta monitors our controls in real time to detect and respond to potential issues.
Credential handling
We connect to insurance and patient portals using secure, token-based integrations. Passwords are encrypted and isolated using AWS Nitro Enclaves.
Traditional security monitoring
Checked once a year
Issues can go unnoticed between audits
You’re asked to trust what companies say
Things can fall out of date over time
Granted with Vanta
Monitored automatically everyday
Problems are caught and flagged right away
You can see a live, up-to-date report anytime.
Always current and continuously verified