Circle Health is built for healthcare-grade security and compliance. The platform is HIPAA compliant, with SOC 2 Type II controls in progress, end-to-end encryption in transit (TLS 1.2+) and at rest (AES-256), role-based access control, and full audit logging across every clinical action.
We integrate with EMR/EHR systems through API-based, non-embedded synchronization. Documentation generated by Circle's assistants always requires clinician review and approval before being committed to the external record. We never train foundation models on customer PHI.
For security questionnaires, BAAs, or detailed architecture documentation, contact security@circlehealth.co.