Where is my data stored?
Your data is hosted in secure, U.S.-based Amazon Web Services (AWS) regions. We use encryption in transit (TLS) and at rest, network segmentation, and least-privilege access controls. Production data is isolated from non-production environments, and access is audited.
Is detaso HIPAA compliant?
Yes. detaso is designed and operated to meet HIPAA Security & Privacy Rule requirements, and we will sign a Business Associate Agreement (BAA). Our staff complete recurring HIPAA training, and we maintain documented policies, risk assessments, and technical safeguards (encryption, access control, audit logging).
How does login and access work?
Users authenticate with email + password (with optional multi-factor authentication). Access is role-based and least-privileged by default. Admins can manage permissions, enforce MFA, and revoke access instantly.
What browsers and devices are supported?
detaso is web-based—no local install. We support all major modern browsers. If you can run a current browser, you’re good (Windows, macOS, Linux, iPadOS/Chromebook, etc.).
Do you store any data on my computer?
No patient data is stored locally. All PHI remains in our encrypted cloud. Browser storage is limited to functional items (e.g., session tokens) and never includes PHI.
Is my data backed up?
Yes. We perform frequent encrypted backups and maintain cross-region copies. Point-in-time restore is supported.
What’s your uptime and maintenance approach?
We target high availability with multi-AZ redundancy. Updates are rolled out with zero-downtime deployments. Scheduled maintenance is announced in advance via in-app/banner/email.
How long does implementation take?
Most customers are live in 4–8 weeks, including configuration, data migration, and training. Actual timing depends on data complexity, integrations, and training scope.
Can I migrate my data out if we leave?
Yes—your data is your data. We provide structured exports of your records and documents and guide you through a clean handoff. De-provisioning follows a documented process, with validated destruction of residual data after the agreed retention period.
What security controls do you use beyond encryption?
- Network isolation, automated patching, and secrets management
- Role-based access control and optional MFA
- Comprehensive audit logs (user, admin, API) available to admins
- Vulnerability scanning and regular risk reviews
- Principle of least privilege for staff and services
Can detaso be used for just an outpatient therapy clinic?
Yes. Pricing isn’t tied to the number of modules; enable only what you need and add more later.
Does detaso work for developmental preschools and day habilitation?
Yes. detaso supports developmental preschools and adult day habilitation workflows, including attendance, daily progress, and program documentation.
How will detaso help me grow my business?
By improving documentation speed and accuracy, reducing denial risk through clean claims, and giving leaders real-time visibility (dashboards, audit logs, and KPIs). Customers typically see faster time-to-bill, lower rework, and improved collections.
How does detaso web work?
detaso is a secure, multi-tenant web platform. Admins configure locations, users, roles, and permissions. Staff log in through a browser to complete documentation, scheduling, billing, and reporting. Integrations (e.g., clearinghouse, payments) are enabled as needed.
What if we need support?
You’ll have access to our knowledge base, in-app help, and support team. For incidents affecting availability, we provide status updates and post-incident summaries. Priority response options are available on eligible plans.
Can detaso manage all my billing?
Yes! detaso uses a billing clearing house that transmits your billing events, aids in checking benefit eligibility, and pulls back payment files. If you are currently using multiple portals and systems to bill services, you'll be able to simplify to a single source.
