Security Overview
Last updated April 4, 2026This overview summarizes the current security posture described publicly by Checksalus. Detailed controls, architecture diagrams, and procurement documents are shared through customer or partner review processes as appropriate.
Infrastructure overview
Checksalus is designed around modern cloud infrastructure patterns, including AWS HealthLake-oriented storage and FHIR-native clinical data handling where that architecture fits the deployment.
Encryption
Checksalus is designed to support encryption at rest using strong contemporary standards such as AES-256 and encryption in transit using TLS 1.2 or higher.
Access controls
Administrative and product access are intended to be governed through role-based access control, multi-factor authentication where supported, and auditable access patterns appropriate for healthcare review.
Certification posture
Public materials may reference HIPAA-aligned operations and SOC 2 Type II work in progress. Checksalus avoids claiming completed certifications or attestations that are not yet finalized.
Vulnerability disclosure policy
Security researchers or customers who believe they have identified a vulnerability should report it to security@checksalus.com with enough detail for review and reproduction where possible.
Penetration testing cadence
Security testing cadence may include internal review, external assessment, and pre-launch control validation depending on deployment scope and commercial stage.
Contact
Security inquiries can be sent to security@checksalus.com.