HIPAA compliant.
Built that way from day one.
Running a chiropractic practice means handling protected health information every day. Grit is built with the controls, infrastructure, and agreements you need to stay compliant and keep your patients' data safe.
Encryption in transit & at rest
All data is encrypted using TLS 1.3 in transit and AES-256 at rest. Your patient records are protected end to end.
AWS infrastructure
Hosted on Amazon Web Services with US-based data centers. AWS maintains SOC 2 Type II and ISO 27001 compliance.
Access controls & audit logs
Role-based access controls limit who can see what. Every action in the system is logged and auditable.
Regular backups
Your data is backed up automatically on a regular schedule. In the event of any incident, restoration is fast.
Secure messaging
Patient-provider communication is encrypted and isolated. No PHI ever travels through unprotected channels.
You own your data
Export your full dataset at any time, no questions asked. We never sell, share, or monetize your patient data.
Your data is yours. Always.
You can export your full dataset — patients, notes, appointments, everything — at any time. If you ever leave Grit, you take your data with you. We don't hold it hostage, and we never sell it to anyone for any reason.
- Full data export available anytime
- We never sell or share patient data
- US-based data centers only
- Data deleted upon account closure on request
Your data.
Your terms.
Questions about compliance?
We're happy to walk through our security setup before you sign up.