Healthcare
Healthcare HIPAA baseline
PHI redaction, consent binding, breach thresholds, dual approval on high-risk surfaces.
What this package does
HIPAA-aligned guardrails for clinical and telehealth backends. Forces PHI redaction across logs and downstream sinks, binds events to consented purposes, opens a breach incident if more than 500 records are affected in a single operation, and requires dual approval for sensitive workflows.
Designed for
- EHR and telehealth APIs
- Clinical decision support agents
- Patient-facing copilots
What's included
- PHI redaction with drop strategy by default
- Consent-purpose binding (HIPAA §164.506)
- Breach notification threshold @ 500 records
- Dual approval for high-risk actions
Controls in this bundle
Profile tiers
Switch profiles in Studio to retune default thresholds across the whole bundle without rewriting any control by hand. This package ships at strict — anything you've already tightened by hand is preserved on switch.
Every control in this package uses identical parameters across all four profiles. Switching profile in Studio has no effect here.
Attestation
The canonical hash of these bundle bytes is sha256:c0a48761e1b79685db0dab98be7b43db42e75c29f7568c5b0641e48556b3d224. The same hash is computed at lock time, at Stripe checkout, and again on the runtime side before any byte is honored.
Want to customize first? Opening this package in Studio prefills the canvas with the 9 controls above. You can add, remove, or retune any of them before you lock the hash and pay.