Security
Security controls are part of the workflow, not bolted on beside it.
The current product includes protected Clerk entry, role-aware backend access, PHI audit logging, masking in application logs, and in-product AI runtime settings. This page is intentionally limited to what the product can truthfully demonstrate today.
Current controls
- Protected workspace routing and sign-in flow
- Role-based access inside the app
- Audit logging for PHI-sensitive workflow paths
- Masked application logging for sensitive data paths
- Organization-scoped AI runtime configuration inside the product
Scope honesty
This page does not imply that every external compliance dependency is already complete. Vendor, storage, and contractual controls should be evaluated against the current implementation and signed agreements.