Your patients’ data is not our business.

We built this for the clinical environment. Security is not a feature. It is the foundation.

Certifications

Clinical-grade security, built in.

HIPAA
HIPAA compliant
PHI encrypted in transit and at rest. Business Associate Agreements available for all institutional customers.
SOC 2
SOC 2 Type II
Annual independent audit of security, availability, and confidentiality controls. Report available under NDA.
AES-256
AES-256 encryption
All data encrypted at rest. All data in transit uses TLS 1.3.
BAA
BAA available
Business Associate Agreements provided to all Practice plan customers.
Key commitments

What we promise.

PHI never used for model training
Your clinical inputs are not used to improve any model without explicit written agreement. Contractually guaranteed.
Role-based access controls
Every query is logged. Access is controlled by role. Full audit trail available on request.
US data centers
All data hosted in US-based infrastructure. No international data transfers without explicit consent.
Compliance pack

What’s in the compliance pack.

All compliance documentation provided under NDA.

Request BAA / compliance pack →