HIPAA-Aligned Data Practices for Sensitive Information

Effective Date: January 18, 2025
Version: v1.2

This policy outlines Splitifi’s alignment with HIPAA data handling standards. We take extra measures to protect any health-related information disclosed through our platform in the context of family law matters.

1. What Is HIPAA?

HIPAA (Health Insurance Portability and Accountability Act of 1996) sets standards for protecting sensitive patient health information from being disclosed without the patient’s consent or knowledge.

2. Scope of Health Data in Divorce

Splitifi users may disclose personal health or mental health data during case filings, financial affidavits, or custody evaluations. Though Splitifi is not a HIPAA-covered entity, we treat this data with the same rigor and confidentiality.

3. PHI Handling and Storage

• Health-related files are encrypted in transit and at rest (AES-256)
• Access is restricted to the account owner and their authorized counsel
• No PHI is shared without user authorization

4. Secure Uploads and Document Control

All uploaded documents containing PHI are tagged, encrypted, and stored in a protected container. These documents are never used for internal analytics or third-party review.

5. Staff Access and Confidentiality

Splitifi personnel are trained on data minimization and are prohibited from accessing PHI unless required to support a user request, in which case all activity is logged and reviewed.

6. Data Retention and Disposal

PHI is retained only for the duration of the case unless otherwise specified by the user. Upon case closure, data may be deleted upon request, following secure digital destruction protocols.

7. Alignment with Other Regulations

Splitifi’s HIPAA-aligned procedures are part of our broader compliance framework, which includes SOC 2, GDPR, and regional privacy policies.

For questions related to PHI and legal use within Splitifi, contact privacy@splitifi.io.