LERA Beta Launching April 2026 — Join Early Access

LERA Health logo

Security & Trust

Last updated: March 2025

At LERA Health, your trust is our most important asset. We take the security of your personal and health information seriously and have implemented comprehensive measures to protect it.

HIPAA Compliance

LERA Health is fully compliant with the Health Insurance Portability and Accountability Act (HIPAA). All protected health information (PHI) is handled in accordance with HIPAA Privacy and Security Rules, including appropriate administrative, physical, and technical safeguards.

Data Encryption

All data transmitted between your device and our servers is encrypted using TLS 1.2 or higher. Your health data stored in our systems is encrypted at rest using AES-256 encryption, the same standard used by leading financial institutions and government agencies.

Access Controls

Access to your health information is strictly limited. Only licensed practitioners directly involved in your care, and authorized LERA Health staff with a legitimate need, can access your PHI. All access is logged and audited.

Lab Partner Security

All laboratory partners used by LERA Health are CLIA-certified and CAP-accredited, operating under strict data handling agreements. Your samples and results are handled with the highest standards of privacy and security.

Secure Infrastructure

Our platform is hosted on industry-leading cloud infrastructure with SOC 2 Type II certification. We conduct regular security assessments, penetration testing, and vulnerability scans to identify and address potential risks.

Third-Party Vendors

Any third-party service provider with access to your data is required to sign a Business Associate Agreement (BAA) and comply with HIPAA standards. We carefully vet all partners for their security practices.

Incident Response

In the unlikely event of a data breach, LERA Health has a comprehensive incident response plan in place. We will notify affected users and relevant authorities as required by law, including within the HIPAA-mandated timeframes.

Your Role in Security

We encourage you to protect your account by using a strong, unique password, enabling two-factor authentication where available, and logging out of your account when using shared devices. If you suspect unauthorized access to your account, contact us immediately at security@lerahealth.com.

Contact Us

For security-related questions or concerns, please contact us at security@lerahealth.com.