Security & compliance
Built to protect patient data at every step.
Pinotage Health is HIPAA-compliant, independently attested via Scytale, and designed so the clinician always remains in control.
HIPAA
Attested via Scytale
- PHI handled with rigorous safeguards
- Every note clinician-reviewed
- Responsible, human-in-the-loop AI
HIPAA compliance
HIPAA-compliant, independently attested.
Pinotage Health is HIPAA-compliant and attested through Scytale. Protected health information stays in Google Cloud under a Business Associate Agreement, with US data residency.
- HIPAA-compliant platform
- Independently attested via Scytale
- Encrypted in transit and at rest
Compliance & certifications
What we hold, and what we're pursuing.
Every framework below carries its real status. We won't claim a certification before the audit says so. Your security review shouldn't have to read between the lines.
HIPAA
Independently attested through Scytale. Business associate agreements in place; protected health information stays in Google Cloud under a BAA, with US data residency.
SOC 2 Type II
We are actively hardening controls toward a SOC 2 Type II audit. Security teams can ask us where the readiness work stands, and we'll give you a straight answer.
HITRUST CSF
Planned as we expand into larger hospitals and health systems that standardize on HITRUST for vendor assurance.
ISO/IEC 27001
Planned alongside HITRUST. The same control work feeding our SOC 2 audit builds directly toward it.
Underneath the badges: encryption in transit and at rest, tenant isolation, recursive log redaction, signed-URL audio, and a clinician approving every note before it counts.
Privacy & data protection
Data security and privacy by design.
Integrity and compliance are core values, not afterthoughts. From how data is captured during a consultation to how it flows through coding and billing, the platform is built to protect patient information at every step.
Privacy is protected across the full data lifecycle.
- Consultation
- Documentation
- Coding
- Compensation
Patient information is protected at every step, from consultation to compensation.
PHI stays in Google Cloud, US-only
Protected health information is processed only in Google Cloud under Google's Business Associate Agreement, in US regions, and every AI model call runs through Vertex AI under that same agreement, so no third-party model vendor ever sees patient data.
Tenant isolation, proven in tests
Each organization's data is isolated and access is enforced in code on every PHI operation, backed by a dedicated cross-tenant test suite that verifies one tenant can never reach another's records.
Designed to keep PHI out of the wrong places
A recursive log redactor scrubs PHI and credential fields at any depth before logs are written, audio moves through short-lived signed links that bypass the app servers, and no PHI is stored in the browser.
Clinician-in-control
The clinician is always the final authority.
Our AI supports clinical judgment. It never replaces it.
Every note the platform generates is presented for clinician review and approval, and the codes it suggests are decision-support a clinician signs off on, not an automatic bill. As the note rebuilds live, a delta-update mode preserves the edits you make by hand instead of overwriting them. The physician stays firmly in control of the clinical record.
- Clinicians review and approve every note
- Suggested codes are reviewed and signed off, never auto-billed
- Your manual edits are preserved as the note updates live
- A live checklist one-tap corrects what's missing or in conflict
Nothing enters the record until the clinician approves it.
Responsible AI
AI built to earn clinical trust.
We design technology to improve patient care by supporting clinicians, holding ourselves to excellence and efficiency. Responsible AI means accuracy, transparency, and keeping people in the loop.
Patient-centered
Technology in service of better care, built to support clinicians, not distract them.
Integrity & compliance
Each customer's data is kept in tenant-isolated infrastructure, and PHI is redacted from system logs.
Human-in-the-loop
Accuracy, transparency, and a clinician in the loop, by design, on every note and every suggested code.
Rules the model can't override
Coding passes through deterministic rule checks the model cannot override, and our coding assistant abstains rather than guesses when it can't ground an answer.
Today, we lead with HIPAA. Pinotage Health is HIPAA-compliant and independently attested via Scytale: the compliance commitment we stand behind right now.
Hardening toward SOC 2. Controls like column-level PHI encryption, customer-managed keys, resource-level audit logging, and tightened security headers are on our active roadmap: readiness we're building toward, not a certification we claim today. We're glad to walk your team through our posture and plan.
Security review
Questions reviewers ask.
Where is patient data processed and stored?
Protected health information is processed only in Google Cloud, in US regions, under a Business Associate Agreement (BAA), and encrypted in transit and at rest. Data is isolated per tenant.
Do any third-party AI vendors receive patient data?
No. AI model calls run through Vertex AI inside the same Google Cloud boundary, so no outside model provider receives PHI.
Which standards do you hold, and which are in progress?
HIPAA today, independently attested via Scytale. SOC 2 Type II is in progress, and HITRUST and ISO/IEC 27001 are planned. We list each with its honest status rather than implying a certification we do not yet hold.
Does a clinician stay in control of the record?
Yes. A clinician reviews and approves every note and signs off on the suggested codes before anything is recorded or billed. Nothing reaches the chart automatically, and a clinician's manual edits are preserved.
Can our security reviewers get a BAA and review your posture before we commit?
Yes. PHI is handled under a BAA, and we walk your security and compliance reviewers through our data flows, controls, and standards status as part of evaluation.
Talk to us about your security requirements.
We're happy to walk your team through how Pinotage Health protects patient data at every step, and answer your security review directly.
HIPAA compliant · Attested via Scytale · No commitment