Navodat
Sign inRequest a demo
Trust / Security & HIPAA

Designed for PHI. Audited continuously.

Navodat is built on a zero-trust foundation: encrypted in transit and at rest, scoped per-tenant, and signed by a BAA on every plan.

Visit Trust CenterRequest our BAA
AES-256
Encryption at rest
TLS 1.3
Encryption in transit
SOC 2
Type II in progress
HITRUST
Mapping aligned
Controls

Defense in depth, by default.

Data
Per-tenant encryption

Customer-scoped keys, no cross-tenant retrieval, deletable on request.

Access
Least-privilege roles

Granular RBAC with SSO/SAML and short-lived agent tokens.

Model
No training on PHI

Your data is never used to train foundation or shared models.

Network
Private VPC isolation

Production runs in isolated networks with strict egress allow-lists.

Audit
Immutable logs

Every agent action signed, append-only, exportable on demand.

Lifecycle
Retention controls

Configurable PHI retention windows with automated, verified deletion.