Data Protection Policy
Encryption Standards, Zero-Retention Scribes, and Record Isolation
1. Encryption Standards
We protect clinical data using robust cryptographic controls.
All database records and media files are encrypted at rest using AES-256 keys. Active network channels require TLS 1.3 encryption to protect data in transit from interception or eavesdropping.
2. Database Isolation & Multi-Tenancy
Hypocrates utilizes multi-tenant data logical isolation barriers.
This ensures that each clinic's records, schedules, and billing procedures are isolated and cannot be accessed, queried, or modified by other tenant accounts.
3. Zero-Retention Voice Scribing
Our ambient AI clinical note writing workflow functions on a strict zero-retention architecture.
Voice recordings processed during patient visits are compiled into SOAP notes, formatted, and instantly deleted from our computing nodes. We do not store raw clinician or patient audio files on disk.
4. Key Management & Rotation
Cryptographic keys are managed and rotated dynamically using secure cloud-native key management system modules.
Access to key configurations is highly restricted, limited to security personnel, and fully logged.
5. Automated Backups
To prevent data loss and ensure system resilience, we run automated daily database backups.
Backup files are encrypted with unique keys and stored in geographically isolated storage environments in compliance with legal retention frameworks.