Built for a security review, not around one.
Everything a buyer's security and legal team needs in one place. We publish only the true current state of each item — no certification we don't hold, no badge for an audit that isn't underway.
How we handle your data.
Read-only architecture
We connect to the platforms you already run with read-only access where possible. We do not control clinical workflows or write back into your systems.
PHI minimization
Patient identifiers are stripped and redacted before processing. Inquiry intent is classified; identity is discarded. We do not store raw names, dates of birth, or medical record numbers in our application layer.
Clinical routing to humans
Any message classified as a clinical question is locked from automated response and routed to your licensed staff. We never generate medical advice.
You own your data
Records, routing rules, and logs belong to your group. Exportable, and deletable on request. We do not train models on your patient communications.
HIPAA & BAA
We operate under a Business Associate Agreement with each client and support HIPAA-aligned administrative workflows. There is no “HIPAA certification” — we describe what we actually do.
View BAA details →Subprocessors
We maintain a current list of the infrastructure vendors that process data on our behalf. Available to clients and prospects under review.
Request the list →Status & verification
Our public verification endpoint reports live record status. Check it yourself, any time.
Live status →On certifications
We will display a SOC 2 status here when — and only when — an audit is actually underway, with the observation window started. Until then we'd rather show you the architecture above and let your team evaluate it directly.
Operational verification only. Not legal or medical advice.