We use commercially reasonable efforts to implement security measures that are designed to avoid accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal data. This may include (as appropriate): <ul> <li>We adhere to hospital-level security policies and procedures to protect sensitive user data, adhering to the HIPAA rules, including the Privacy and Security Rules</li> <li>Using cloud-enabled infrastructure designed to reduce our data footprint</li> <li>Encrypting all personal data at rest and in transit</li> <li>Securing sensitive personal data in a dedicated environment in a manner designed to ensure segregation and clear access control</li> <li>