Data Security

Built in Canada. Designed for Oral & Dental Care. Compliant Worldwide.

At Compass Pro, data security is at the heart of everything we do.
As a Canadian-built Dental Practice Management Software (PMS), Compass Pro is purpose-designed for oral and dental care professionals who handle sensitive patient data every day.
We’re proud to be developed under Canadian privacy and data protection standards, while supporting full compliance for practices operating in Canada, the United States, and the European Union.

End-to-End Data Protection

  • Encryption Everywhere – All data, at rest and in transit, is protected with AES-256 and TLS 1.2+ encryption.
  • Secure Canadian Hosting – Compass Pro is hosted on enterprise-grade cloud infrastructure (AWS) with redundancy, encrypted backups, and continuous monitoring.
  • Role-Based Access Control (RBAC) – Ensure staff have access only to what they need. Permissions are fully configurable for administrators.

    Compliance You Can Trust

    Compass Pro is developed and operated in Canada, aligning first with Canadian privacy laws and supporting equivalent frameworks internationally:

    • PIPEDA (Canada) – Compliant with Canada’s Personal Information Protection and Electronic Documents Act.
    • PHIPA (Ontario) – Supports privacy requirements for dental and healthcare providers within provincial jurisdictions.
    • HIPAA (U.S.) – Supports administrative, physical, and technical safeguards for practices operating in the United States.
    • GDPR (EU) – Includes configurable tools for consent management, data access requests, and right-to-be-forgotten controls.
    • Audit Trails – Every access, change, and transaction is logged for full accountability.

    Compass Pro follows industry standards aligned with SOC 2 and ISO 27001 frameworks.
    While our system supports compliance, it does not constitute certification or legal determination of compliance.

    Continuous Monitoring and Reliability

    • 99.9% Uptime Guarantee – Reliable, redundant infrastructure ensures uninterrupted access.
    • Threat Detection & Intrusion Prevention – Active monitoring and real-time alerts protect your data.
    • Regular Security Audits – Third-party testing identifies and resolves potential risks.
    • Automated Backups – Encrypted daily backups with disaster recovery safeguards.

    Secure Communication

    • Encrypted Messaging – Secure email, SMS, and eFax communications.
    • Secure Patient Portal – Provides patients with safe access to records, invoices, and updates.
    • E-Signatures – Legally valid and healthcare-compliant signatures built into your workflow.

    Shared Responsibility, Total Trust

    Security and compliance are a shared responsibility.
    Compass Pro provides the secure platform, training, and tools, while your practice manages access policies and day-to-day data use.
    Together, we protect your patients’ trust — and your clinic’s reputation.

    Disclaimer

    Compass Pro supports compliance with PIPEDA, PHIPA, HIPAA, and GDPR, but does not provide or imply formal certification or regulatory endorsement. The responsibility for legal compliance remains with each healthcare or dental practice.