Built to be trusted.

Patient data is sacred. Clinic OS is designed around four non-negotiables:

• Read-only EMR. We read from Jane / Juvonno. We never edit, never delete.
• Encryption everywhere. TLS 1.3 in transit, AES-256 at rest. Zero exceptions.
• Least privilege. Engineers access production data only when explicitly required, audited, and time-boxed.
• Defence in depth. Network, application, and identity layers each enforce independent controls.

• HIPAA-ready. Administrative, physical, and technical safeguards aligned with HIPAA Security & Privacy Rules.
• SOC 2 Type II audited annually for Security, Availability and Confidentiality.
• PIPEDA compliant for Canadian patient data.
• PHIPA aligned for Ontario clinical data handling.

Clinic OS runs on enterprise-grade cloud infrastructure:

• Multi-AZ deployments on AWS & Google Cloud (Canadian regions for Canadian customers).
• Automated backups every 15 minutes; daily snapshots retained for 30 days.
• Continuous vulnerability scanning of containers and dependencies.
• WAF + DDoS protection at the edge.

• SSO (Google Workspace, Microsoft 365) available on Hub+ and Sales Autopilot plans.
• MFA enforced on all admin accounts by default.
• Role-based access — owner, manager, clinician, reception scopes configurable per location.
• Session timeouts and device fingerprinting on sensitive routes.

We maintain a documented incident-response runbook, with on-call coverage 24/7. Customers are notified within 72 hours of confirmed incidents that affect their data. Postmortems are shared publicly on the Status page for material outages.

Found a vulnerability? Email security@clinicfirst.app with details and reproduction steps. We respond within one business day and credit valid reports in our hall of fame.

We do not pursue legal action against researchers acting in good faith under our responsible disclosure terms.