Front Desk AI Clinical Scribe & PMS Security & Compliance Pricing For Patients Sign in Book a demo
Security & Compliance

Trust is the first feature.

Prescr handles some of the most sensitive data there is. Here's exactly how we protect it, and an honest account of what's certified versus in progress.

Encryption in transit & at rest

TLS for data in motion and strong encryption for data at rest, across every service.

Role-based access control

Least-privilege access so each staff member sees only what their role needs.

Full audit logging

Every access and change to patient data is recorded and reviewable.

Data-residency controls

Choose where patient data is stored: India or your local region abroad.

Clinician-in-the-loop

AI clinical output is always reviewed and signed by a clinician before it counts.

Consent & recording

Calls and recordings are handled with explicit consent and clear retention rules.

Compliance posture

What we align to, and where we are.

"Aligned" and "ready" mean we are built to the standard's requirements. We will only say "certified" once independently audited. Here's the honest picture.

HIPAA

Aligned

Built to HIPAA's safeguards for US-facing deployments. BAA available on request.

India DPDP Act

Ready

Designed for the Digital Personal Data Protection Act: consent, purpose limitation, residency.

GDPR

Ready

Data-subject rights, DPA and EU-region hosting for clients in scope.

ABHA / ABDM

In progress

Integration follows ABDM milestone certification as a Health Information Provider/User.

Full ABHA/ABDM functionality requires registering as an ABDM HIP/HIU and passing milestone certification. We reflect our true status here and never imply certification before it is earned.

Documentation

Paperwork your IT and legal teams expect.

We provide the agreements and references procurement and security reviewers ask for, so an evaluation doesn't stall.

  • Data Processing Addendum

    Our standard DPA covering processing, sub-processors and residency. Read the DPA →

  • Business Associate Agreement

    BAA available for HIPAA-covered entities on request.

  • Privacy & retention

    Clear policies on what we store, why, and for how long. Privacy policy →

prescr · security checklist
Encryption in transit & at rest
RBAC & SSO support
Audit logs & access reviews
Data residency selection
DPAAvailable before onboarding

Bring your security questionnaire.

We'll walk your team through our controls and provide the documentation you need to sign off.

Talk to usRead the DPA