Compliance
Healthcare software lives or dies by its paper trail — here's ours.
- HIPAA
- We sign a BAA with every customer. All PHI handling is audited and logged.
- SOC 2 Type II
- Annual audit with continuous controls monitoring. Report available under NDA.
- GDPR
- Data processing agreements, EU hosting option, and clear data-subject workflows.
- HITRUST
- Mapping to HITRUST CSF v11 controls — formal certification in progress.
Need our pen-test results or SOC 2 report? Email compliance@bluehive.health.