Security & trust

Clinic data is treated like clinical data.

Tenant isolation, encryption, role-based access, and a full audit trail come standard on every plan. Here's what we ship today and what's on the roadmap.

Tenant isolation

Every clinic's data is logically isolated. Every database query is scoped to the caller's clinic_id at the framework level — not at the UI. Cross-clinic data leakage is impossible by design, not by convention.

Encryption everywhere

TLS 1.2+ in transit. AES-256 at rest for the database, file storage, and backups. Secrets (API keys, SMTP passwords, gateway credentials) encrypted with a separate key envelope and never logged.

Role-based access control

Granular permissions per role (clinic admin, dentist, hygienist, front desk, accountant, observer). Clinic admins can override the defaults per permission, per user. The audit trail records who saw what, when.

Audit trail on everything

Every create, update, delete is logged with user, IP, timestamp, old value, and new value. Queryable from the audit page. 365-day retention by default; longer on Chain plans.

Soft delete + recovery

Deletes are soft by default. Records are hidden but recoverable from the trash by admins. Hard delete is opt-in per record type, with a configurable retention window for compliance.

Regional data residency

Chain plans pin storage to a specific region (India, EU, US, UAE, APAC) for data-residency compliance. Default for new clinics is the region closest to their primary location.

Regulatory posture

Where we sit on the major frameworks.

Honest status, not marketing badges. We share certification roadmaps with enterprise prospects on request.

GDPR (EU)

Aligned

Per-patient right to access, rectification, erasure, and portability. Data processor agreement on file. Per-tenant data residency in EU on request.
HIPAA (US)

Posture aligned, BAA on Chain

Technical, administrative, and physical safeguards aligned with the HIPAA Security Rule. Business Associate Agreements available on Chain plans for US deployments.
DPDP (India)

Aligned

Per-data-principal rights honored. DLT-compliant SMS template workflow. Indian data residency on request.
ISO 27001

Targeting 2026

Information Security Management System under build; certification target Q4 2026. Roadmap shared with enterprise prospects on request.
SOC 2 Type II

Targeting 2027

SOC 2 Type II audit slated for 2027. Trust criteria (security, availability, confidentiality) mapped to current controls.

Operational

How we run production.

Daily encrypted backups, 30-day retention, regional storage.
Disaster recovery tested quarterly. RPO ≤ 24 hours; RTO ≤ 4 hours.
Production deploys go through code review + automated tests + change log.
Vulnerability scanning on dependencies (Dependabot + npm audit).
Annual third-party penetration test (results summary on request under NDA).
Incident response playbook with breach-notification SLAs.
Sub-processors disclosed in the privacy policy. Updated when changes occur.
Status page at status.smilequte.com (publishing).

Responsible disclosure

Found a vulnerability? Tell us.

We treat security researchers as partners. If you've found a vulnerability, please report it to security@smilequte.com (PGP key on request) before public disclosure.

We acknowledge reports within 24 hours, validate within 5 business days, and patch high-severity findings inside 30 days. Researchers who follow responsible disclosure are credited (with permission) in our security changelog.

Machine-readable contact info lives at /.well-known/security.txt.

Book a demo

See smileQute on your clinic's workflow.

A 30-minute walkthrough, mapped to how you actually run, whether you are one chair or a chain. No card, no commitment.

Live in a day after the demo
We migrate your patients and inventory
Set up in your currency, language, and timezone

Prefer to talk now? Email the team.