HIPAA & Compliance
HIPAA & compliance-aligned deployment infrastructure
NEXUS AI is designed to support regulated healthcare environments by providing the technical controls required for HIPAA compliance — while allowing organizations to retain full ownership of their cloud infrastructure.
What NEXUS AI provides
- Provides HIPAA-aligned technical safeguards
- Supports secure handling of regulated workloads
- Enables customer-managed compliance programs
What NEXUS AI does not replace
- Does not claim HIPAA certification
- Does not replace internal compliance processes
Compliance-aligned architecture
Infrastructure isolation
- Container-level isolation per deployment
- No shared application runtime between customers
- Optional private runtimes (Enterprise)
Identity & access control
- Role-based access control (RBAC)
- SSO via SAML / OIDC (Enterprise)
- Least-privilege service access
Audit & logging
- Deployment history
- Execution logs
- Change tracking
- User activity visibility
Secure configuration handling
- Secrets injected at runtime
- No plaintext credentials in code
- Environment-level separation
Cloud-native security
- Deploy to AWS, GCP, or Azure
- Customer-owned cloud projects (Enterprise)
- Region-based data residency control
Designed for healthcare use cases
- Digital health platforms
- Claims & billing systems
- Patient engagement tools
- Internal clinical operations software
- Healthcare SaaS vendors
Shared responsibility model
NEXUS AI provides deployment infrastructure and controls. Customers retain responsibility for:
- Application logic
- Data classification
- Internal policies
- HIPAA program governance
Enterprise security FAQ
Is NEXUS AI HIPAA compliant?
NEXUS AI provides HIPAA-aligned infrastructure controls and is designed to support customer HIPAA compliance programs. Customers retain responsibility for their overall compliance posture.
Does NEXUS AI sign a BAA?
BAAs are available for Enterprise and Healthcare Pro customers, depending on deployment model and cloud provider.
Where is customer data stored?
Customer applications are deployed into cloud regions selected by the customer. Enterprise customers may deploy into customer-owned cloud projects or on-prem environments.
Is data shared between tenants?
No. NEXUS AI enforces tenant-isolated execution. Enterprise plans offer fully private runtimes.
How are secrets managed?
Secrets are injected securely at runtime and are never stored in plaintext within application code or container images.
Do you support audit logging?
Yes. NEXUS AI provides deployment history, execution logs, and access visibility suitable for audit and review workflows.
Can we restrict network access?
Yes. Enterprise deployments support IP allowlisting, restricted networks, and air-gapped environments.
Can we deploy into our own cloud account?
Yes. Enterprise customers can deploy NEXUS AI entirely within their own AWS, GCP, Azure, or on-prem infrastructure.