Atana was created with data security and privacy in mind. As former medical researchers working with highly sensitive patient data, we know firsthand that your data rights are paramount.

The first question that every organization asks when evaluating whether to use a new solution is whether the security and privacy of the data is treated with the utmost care. Atana Health uses a HIPAA compliant data architecture, where all data is encrypted before it is securely store on Amazon Web Services (AWS), a cloud provider trusted by Fortune 500 companies, banks, FINRA, and other highly regulated institutions.

We use bank level security for our website and all server-side databases. If you sign up to get notifications via SMS, we will require you to set up two-factor authentication when you register. We will require you to confirm your identity using 2FA for any sign-in using a new device, or if your security token has expired. For users who sign up using their Google account, we rely on Google's implementation of the OAuth protocol to ensure secure sign-in.

If you have any questions regarding the security of your data, please reach out to us at