Trust, by architecture
A clinic is handing over the most private records a person has. ClinOps is built so that safety is structural — not a policy page, but the way the system is wired. We never sell, share, or mine patient data. Full stop.
Two-factor authentication is mandatory on every login — TOTP codes with backup recovery. No exceptions, no shortcut for clinical data.
Row-level security across 38+ database tables means one clinic can never see another's data. Zero cross-tenant leakage — enforced at the database, not just the app.
AES-256-GCM for sensitive data at rest, TLS in transit. Every uploaded file is verified at the byte level before it is ever stored.
Payment records can't be quietly edited — immutability is enforced by the database itself. Every PHI access, payment and critical action is written to an audit trail.
Patient data lives on infrastructure in Mumbai, under Indian law. No patient data leaves the country.
Consent captured at registration. OTP-verified patient data erasure. Per-patient export. The Act's requirements are part of the design, not bolted on.