Our approach
Kintwadi handles Protected Health Information (PHI), so we follow HIPAA's security and privacy principles throughout the product: minimum-necessary access, strong technical safeguards, and a full audit trail. This page describes our design posture; it is not a claim of formal certification.
Technical safeguards
- Encryption of PHI in transit and at rest
- Role-based access enforced at the database (row-level security)
- An append-only audit log of who viewed or changed what
- Least-privilege access and server-side secrets
- Clear separation of demo data from any real data
Business Associate Agreements (BAA)
For organizations that require a signed BAA — home-care agencies, assisted-living facilities, and similar — a BAA is available on our Care Teams plan. Reach out to sales@kintwadi.app to start the conversation.
Reporting a concern
If you believe health information may have been handled improperly, contact privacy@kintwadi.app and we'll investigate.
This page is illustrative content for a hackathon demo — not legal advice.