Case Study: Omada Health achieves easy, HIPAA-compliant sharing of Protected Health Information with Virtru

Omada Health Relies on Virtru to Easily Share Protected Health Information and Other Sensitive Data while Complying with HIPAA

Omada Health, a digital behavioral health company and the largest CDC‑recognized provider of the National Diabetes Prevention Program, needed a way to share Protected Health Information (PHI) and other sensitive data at scale while remaining HIPAA‑compliant. Previously they blocked email for PHI or forced a slow file‑server link workflow because their former solution did not provide true user‑to‑user encryption. To address this, Omada turned to Virtru and adopted Virtru Data Protection for secure, end‑to‑end email encryption.

Virtru implemented client‑side encryption, automatic scanning and rule‑based protections, and a simple toggle so employees can encrypt messages or let Virtru apply protections automatically; recipients open messages in their browser with no extra downloads, and senders can revoke access after sending. The deployment now covers all Omada employees who handle PHI, simplified the sharing workflow from a multi‑step link process to one‑click email delivery of reports, and enabled secure, HIPAA‑compliant exchange of sensitive data without disrupting users — a measurable improvement in efficiency and data control enabled by Virtru.

Omada Health

Bill Dougherty

Vice President of IT and Security