Online therapy provider achieves HIPAA compliance and boosts productivity & reliability with AWS.
About the Customer
i2iConnect is a HIPAA-compliant practice management and teletherapy platform, building "Relationship-centered Technology" to improve outcomes and revolutionize the delivery of behavioral healthcare.
I highly recommend Cosmin and the safeINIT team. Over the past two years, they helped us to build and maintain our AWS infrastructure. Throughout this process they have always proven themselves to be knowledgeable, responsive and reliable. I sleep easier at night knowing that our platform is in their capable hands.

Glenn Olds

i2iTherapy, Founder & CEO

The Challenge

The initial version of the application was deployed on a rudimentary platform, unable to meet the strict regulations of HIPAA or to address basic high-availability, security, or operational needs. Had these issues not been addressed, it would’ve been impossible for i2iConnect to confidently and securely handle patient data or scale beyond a few users enrolled on their platform.

The Solution

We provided an automation-first approach, using battle-tested Infrastructure-as-Code methodologies and security best practices built into the foundation. Implementing the safeINIT solution meant that.
i2iConnect has a highly customized Landing Zone
They adapted perfectly to compliance requirements
Why safeINIT
Having delivered numerous successful projects in the past alongside i2iConnect’s CISO and HIPAA consultant, we were brought in because of our extensive AWS knowledge and blazing-fast delivery times. The high-touch approach and involvement on all organizational levels, from upper management to developers, is what ultimately secured the customer’s confidence in our abilities.
AWS was chosen for its broad range of services, competitive pricing model, and proven track record with global service providers.

We followed the AWS Security Reference Architecture and deployed an AWS Organization consisting of multiple accounts, each with a well-predefined role. Access to the environment is granted through AWS SSO integrated with the customer’s Google IdP. Various security services are used to govern and monitor the environment, such as AWS Guard Duty, AWS Security Hub, AWS Config, AWS CloudWatch, etc.
Results and Benefits
The immediate result was a boost of confidence from the customer’s business associates in terms of overall system security. Together with the CISO we filled out the HIPAA compliance report and checked all the missing boxes.

Specifically, this resulted in:
Improving the application’s reliability and cost-effectiveness
Reducing the time to scale by over 75%
Decreasing database and compute costs by 50%
Streamlining application development process
In addition to the operational improvements, our solution significantly bolstered the application's resilience, a critical factor for a teletherapy platform like i2iConnect. By implementing a multi-layered security approach, we fortified the application against potential threats and vulnerabilities, ensuring continuous protection of sensitive patient data. This included advanced encryption for data at rest and in transit, regular security audits, and automated compliance checks to adhere to HIPAA regulations.

Furthermore, our governance framework established clear policies and procedures for data handling, access control, and incident response, enhancing the overall security posture. The application's architecture was redesigned for high availability, with redundancies and failover strategies in place to ensure uninterrupted service, crucial for the reliability of i2iConnect's teletherapy sessions.

These enhancements not only safeguarded the application against disruptions but also laid a robust foundation for i2iConnect's sustained growth and scalability in the healthcare sector.
Finally, i2iConnect is now fully confident there is a strong, secure foundation in AWS on which it can expand its current and future business ventures.
Let’s get in touch and explore how we can accelerate your business.
Write to us
Yes - in AWS
We'll never share your email with anyone else.