Default is block. Allow requires all 3 layers.
We don't scrub PHI. We extract clinical facts as codes — leaving no room for PHI to exist.
Every outbound payload passes a three-layer egress gate: field allowlist, value pattern scan, and structural integrity check. No field leaves the system without clearing all three. This is not a filter — it's a fail-closed architecture.
Only pre-approved field names pass through. Unknown fields are stripped.
Regex + NER scan on all output values. Catches names, DOBs, MRNs, SSNs, addresses, phone numbers.
Final payload hash compared against known-safe schema. Any structural deviation triggers block.
This payload contains only structured clinical codes, standardized values, and pre-approved field names. No PHI. No free text. No identifiers. Safe for downstream AI, analytics, or external transmission.
Without architectural containment, AI cannot safely reason over clinical state. We have structured clinical data with no PHI. That means any AI — GPT-4, Claude, open-source — can safely process our output without HIPAA exposure. This is not a feature. It's the reason the rest of the system is possible.
Synthetic payloads. Fail-closed architecture. Every output auditable. Zero PHI in transit.