Technology, Privacy & Integrations

Sovereign by design. HIPAA-grade by default.

Sensitive Protected Health Information stays inside a controlled, audited environment. Never sent to public commercial AI models. Never used to train anyone else's system.

Localized LLM stack

Our voice models run on hardware inside a dedicated, HIPAA-compliant enclave — or, for enterprise deployments, inside your own data center. No prompts, transcripts, or patient context are ever routed to third-party foundation models.

  • Fine-tuned open-weight models we host and audit
  • PHI redaction before any diagnostic logging
  • Zero training on your patient data — ever

EHR integration, done right

Secure read/write integrations with the systems your staff already trusts. The AI and your humans are always looking at the exact same calendar and patient record — no divergence, no ghost bookings.

EpicCernerathenahealtheClinicalWorksNextGenDrChrono
Data privacy core

Eight controls between a patient's voice and a leak.

AES-256 at rest

Encrypted storage across every layer, keys rotated automatically.

TLS 1.3 in transit

Modern ciphers only. Legacy protocols disabled.

PHI redaction

Sensitive fields are stripped from logs before persistence.

BAA included

Business Associate Agreement signed with every customer.

SOC 2 Type II

Independently audited controls, refreshed annually.

Data residency

Choose US, EU, or on-prem for full sovereignty.

No model training

Your data trains your workflows — never our public models.

SSO & SCIM

Okta, Azure AD, Google — clean identity across the org.

Architecture

A short walk from ring to record.

A simplified view of what happens between a call arriving and your team taking action. Every arrow crosses an encrypted, audited boundary.

  1. 1. Encrypted telephony
    SRTP voice ingress terminates at our edge — no third-party recording.
  2. 2. Local speech + LLM
    ASR and reasoning run on dedicated GPU nodes we own and audit.
  3. 3. PHI-aware routing
    Rules engine decides: AI handles, or hand off to a human.
  4. 4. EHR sync
    Any booking or note writes back to your EHR with staff attribution.
  5. 5. Immutable audit log
    Every decision is timestamped, signed, and exportable.