Security & Privacy

We take your data, your patients’ trust, and the safety of AI in healthcare seriously, and we build every feature with that responsibility in mind.

Vanta Logo

Data Management

Regulations

Designed for compliance.
Built for care.

Built to meet the security and privacy standards trusted by top healthcare providers.

HIPAA

We comply with the Health Insurance Portability and Accountability Act (HIPAA), ensuring the security, confidentiality, and integrity of protected health information (PHI).

AICPA SOC logo

SOC 2

We are undergoing SOC 2 Type I and Type II certification, following strict security and privacy protocols to protect client data and maintain system integrity.

GDPR

We comply with the General Data Protection Regulation (GDPR), ensuring EU users’ data is managed with strong privacy rules, consent management, and access control.

PIPEDA

We adhere to the Personal Information Protection and Electronic Documents Act (PIPEDA), ensuring personal data is handled with consent, transparency, and accountability.

AI Safety Features

Guardrails

Agents are trained to operate only within defined workflows. Off-topic or sensitive inputs are blocked, ensuring safe and focused conversations.

Safeguards

If a message matches escalation criteria—clinical risk, confusion, or emotional distress—the agent automatically flags or hands off to your team.

Chat Logs

Every message exchanged is recorded and reviewable. Teams can inspect what was said, what was triggered, and how the AI responded.

Dashboard & Stats

Track agent performance across KPIs like task completion, conversation length, escalation rate, and drop-off points—all in real time.

Built on trust. Backed by transparency.

Learn how Puppeteer AI keeps your data secure, your systems compliant, and your operations running reliably

Visit our Trust Center
Privacy by Design

Why Healthcare Teams Choose Puppeteer

Puppeteer was built to meet the highest standards of healthcare-grade security. Our infrastructure is resilient, our compliance is proactive, and our approach is transparent, so you can scale confidently, knowing your data is protected every step of the way.

previous slide
next slide

Uninterrupted Availability

High-resilience architecture and rigorously tested disaster recovery plans ensure our AI stays online, so you never miss a beat.

Reason slide

World-Class Security

We’re SOC 2 Type II certified and use at-rest and in-transit encryption, with 24/7 threat monitoring to safeguard your data.

Reason slide

Privacy by Design

Our platform is compliant with HIPAA, GDPR, and CCPA from day one — privacy isn’t a feature, it’s the foundation.

Reason slide

Total Transparency

We provide clear reporting, independent audits, and a direct line of communication — no black boxes here.

Reason slide

Chain of Trust

We partner with top-tier providers and undergo regular third-party assessments to secure your entire ecosystem.

Reason slide
Blog

Learn about our technology

View all
AI Implementation

Smart Ring Wearables

We integrated a smart ring with our AI to respond to user questions, such as "How did I sleep last night?" in a human-like manner.
Luca Spektor
October 23, 2025
|
3 min

Remote Triaging: The Science, the Benefits, and the Future of Smarter Patient Care

Remote triaging enables timely, accurate, and scalable patient assessments, improving outcomes and optimizing healthcare resources.
October 23, 2025
|
AI Implementation

AI Agent's Performance📊

This case study highlights how the AI Agent, Pep, has performed in answering FAQs and providing guidance on the use of medical cannabis.
Luca Spektor
October 23, 2025
|
5 min