Security

Security and compliance, taken seriously.

All PHI encrypted at rest (AES-256) and in transit (TLS 1.3).

Role-based permissions. Granular per-staff access. Audit log of every access event.

Daily automated backups. Point-in-time restore available on Practice tier and above.

HIPAA-aligned. BAA available on request — email Adamu .

Patient data stored in US-based data centers (AWS US-East). Never leaves the US.

Documented incident response process. 72-hour breach notification commitment.

Have specific compliance questions? Email us.