Compliance Standard
HIPAA Compliance & Healthcare Data Safeguards
How SoftBrixAI aligns with the Health Insurance Portability and Accountability Act (HIPAA) to secure protected health information.
Standard Framework: HIPAA Title II Administrative Simplification Last Architectural Review: May 10, 2026
Controls
Security & Engineering Control Implementations
164.312(a)(1) Active Control
Access Control
Unique user identification and emergency access procedures. We mandate RBAC and secure API key scopes for all model requests.
164.312(c)(1) Active Control
Integrity
Policies to protect PHI from improper alteration or destruction. We implement cryptographic checksums and immutable transaction ledgers.
164.312(e)(1) Active Control
Transmission Security
Guardrails against unauthorized access to PHI that is being transmitted. All data is encrypted using TLS 1.3 in transit and AES-256 at rest.
FAQs
Frequently Asked Questions
Does SoftBrixAI sign Business Associate Agreements (BAAs)? expand_more
SoftBrixAI is an engineering services provider. We configure and deploy the infrastructure inside your private cloud environment where you maintain direct BAAs with cloud hosts like AWS or GCP.
How do you guarantee model inputs are de-identified? expand_more
We construct local preprocessing pipelines using Named Entity Recognition (NER) models to detect and redact patient identifiers before sending inputs to the model.
Need a secure, audit-ready AI system?
We configure models to run locally or inside your private clouds to align with HIPAA, SOC 2, and sovereign security controls.