Trust guide

Trust, security, and data request explanation

Trust copy should explain what is documented, what is available for review, and what is not claimed.

Last updated: 2026-07-06patient-authorized record preparation

What a trust review should cover

1

Who can access record materials and under what role.

2

How upload, review, authorization, and sharing are separated.

3

How deletion, correction, privacy, billing, and authorization questions are routed.

4

What evidence is public and what requires partner, security, or legal review.

5

Which claims are not made without verified evidence.

Trust topics

Security

Access control, private paths, share expiry, and download limits where implemented.

Privacy

Data request paths and patient-authorized sharing.

Compliance

Public evidence and review boundaries, not certification claims.

AI/OCR/translation

Provider and processing topics for review, not medical quality claims.

What this is not

  • It is not a certification, legal approval, hospital approval, or launch-readiness claim.
  • It does not make robots.txt a privacy control for sensitive routes.
  • It does not approve real cross-border PHI workflows without the required evidence gates.

FAQ

Where should data requests start?

Use the public compliance or contact path for deletion, correction, privacy, billing, or authorization questions.

Can trust copy say certified?

Only if verified certification evidence exists and is approved for public use. Otherwise the copy should describe review topics and controls.

Next step

Review current Trust Center evidence pages.

Review Trust Center