Your patients’ data is sacred. We treat it that way.
Indent is built on a HIPAA-compliant, SOC 2-certified infrastructure designed for healthcare from day one — not bolted on as an afterthought.
HIPAA
Compliant
SOC 2
Type II
PCI DSS
Compliant
HITRUST
Certified
How We Protect PHI
Encryption Everywhere
TLS 1.2+ in transit. AES-256 at rest. Your data is encrypted at every stage — storage, transmission, and processing.
Zero-Trust Architecture
MFA required for every user. mTLS for all service-to-service communication. Private subnets for all PHI-handling services. No shortcuts.
Role-Based Access Control
Every team member gets exactly the permissions they need — no more, no less. Full audit trail of who accessed what and when.
SOC 2 Certified Infrastructure
Annual third-party audits verify our security controls, availability, processing integrity, confidentiality, and privacy.
BAA Ready
We sign Business Associate Agreements with every customer. Your compliance team will love working with us.
Penetration Tested
Annual third-party penetration testing by HIPAA-experienced security firms. We find vulnerabilities before anyone else does.
Built on AWS with Healthcare-Grade Infrastructure
- Multi-AZ deployment across AWS regions
- Automated failover with zero-downtime recovery
- Daily encrypted backups with 35-day retention
- Cross-region disaster recovery
- VPC with private subnets for all data services
- AWS WAF + Shield Advanced for DDoS protection
99.9%
Uptime SLA
Guaranteed availability backed by our service-level agreement
Complete Audit Trail
Every action in Indent is logged — logins, data access, claim submissions, payment postings, configuration changes. Exportable for your compliance team.
Real-Time Monitoring
24/7 infrastructure monitoring with automated alerting. We know about issues before you do.