Healthcare
HIPAA patient copilot
PHI drop, consent binding, HITL escalation — safe AI for patient-facing surfaces.
What this package does
Purpose-built for AI copilots that interact directly with patients. Drops PHI before it reaches logs or downstream systems, binds every event to the patient's consented purpose, escalates any high-stakes AI response to a human clinician, and retains a tamper-proof log for the full HIPAA retention period.
Designed for
- Patient-facing AI copilots and chatbots
- Telehealth messaging platforms
- Remote patient monitoring agents
What's included
- PHI drop strategy (not mask — drop)
- Consent-purpose binding: treatment + payment only
- HITL escalation to clinician within 2 hours
- Breach notification threshold @ 500 records
- Immutable 7-year audit
Controls in this bundle
Profile tiers
Switch profiles in Studio to retune default thresholds across the whole bundle without rewriting any control by hand. This package ships at strict — anything you've already tightened by hand is preserved on switch.
Every control in this package uses identical parameters across all four profiles. Switching profile in Studio has no effect here.
Attestation
The canonical hash of these bundle bytes is sha256:1a7e7efce45e01322155ae353ad8737ce1c5995f8e639b20f170ef055dc161e0. The same hash is computed at lock time, at Stripe checkout, and again on the runtime side before any byte is honored.
Want to customize first? Opening this package in Studio prefills the canvas with the 9 controls above. You can add, remove, or retune any of them before you lock the hash and pay.