Live

Trust & Security

Enterprise-Grade Security
for Healthcare Data

Built with Australian healthcare compliance at its core. SOC 2 aligned, APPs compliant, and hosted exclusively in Australian data centres.

Become a partner Security Enquiries

Security pillars

Three pillars of trust

Every aspect of HSuite is designed around enterprise-grade security, real-time reliability, and Australian data sovereignty.

Enterprise Security

AES-256-GCM

Every layer of HSuite is built with security at its core. From MFA enforcement and role-based access control to AES-256-GCM encryption at rest and in transit, your data is protected by enterprise-grade controls aligned with SOC 2 standards.

Multi-factor authentication enforcement

Role-based access control (4 roles)

AES-256-GCM encryption at rest

TLS 1.3 encryption in transit

SOC 2 aligned controls

Real-time Sync

Bi-directional

Webhook-driven PMS integrations with idempotent event processing, automatic retry with exponential backoff, and comprehensive sync logging. Every data movement is tracked, auditable, and recoverable.

Idempotent event processing

Automatic retry with backoff

Comprehensive sync logging

Bi-directional data flow

Sub-2-second propagation

Australian Hosted

AU Data Residency

All data stored exclusively in Australian data centres. Fully compliant with Australian Privacy Principles (APPs) and OAIC guidelines for healthcare data. Your patient data never leaves Australian shores.

Australian data centre hosting

Australian Privacy Principles (APPs)

OAIC guideline compliance

Data sovereignty guarantee

No offshore data transfer

Compliance

Standards we meet

SOC 2

Type II Aligned

Security, availability, and confidentiality controls

OAIC

Compliant

Office of the Australian Information Commissioner

APPs

13 Principles

Australian Privacy Principles framework

WCAG 2.1

AA Level

Web Content Accessibility Guidelines

AES-256

GCM Mode

Military-grade encryption standard

TLS 1.3

Enforced

Latest transport layer security

Data residency

Your data stays in Australia

All patient data, practice information, and application records are stored exclusively in Australian data centres. We guarantee that your data never leaves Australian jurisdiction.

Sydney, NSW

Primary data centre

Online

Melbourne, VIC

Secondary data centre

Online

Security features

Defence in depth

Multi-Factor Authentication

Enforced MFA for all user accounts with TOTP and SMS-based verification options.

Role-Based Access Control

Four granular roles (Admin, Manager, Staff, Viewer) with permission isolation across tenants.

Audit Logging

Every action is logged with user, timestamp, IP address, and change details. Immutable audit trail.

PII Encryption

All personally identifiable information encrypted at rest using AES-256-GCM with per-tenant key management.

Infrastructure Security

Edge-deployed on Vercel with DDoS protection, WAF, and automatic SSL certificate management.

Incident Response

24-hour incident response SLA with automated alerting, runbook procedures, and stakeholder communication.

Ready to transform your practice?

Join 500+ practices across Australia already using HSuite to streamline applications and grow revenue.

Talk to our team

Live

Trust & Security

Enterprise-Grade Security
for Healthcare Data

Built with Australian healthcare compliance at its core. SOC 2 aligned, APPs compliant, and hosted exclusively in Australian data centres.

Become a partner Security Enquiries

Security pillars

Three pillars of trust

Every aspect of HSuite is designed around enterprise-grade security, real-time reliability, and Australian data sovereignty.

Enterprise Security

AES-256-GCM

Multi-factor authentication enforcement

Role-based access control (4 roles)

AES-256-GCM encryption at rest

TLS 1.3 encryption in transit

SOC 2 aligned controls

Real-time Sync

Bi-directional

Webhook-driven PMS integrations with idempotent event processing, automatic retry with exponential backoff, and comprehensive sync logging. Every data movement is tracked, auditable, and recoverable.

Idempotent event processing

Automatic retry with backoff

Comprehensive sync logging

Bi-directional data flow

Sub-2-second propagation

Australian Hosted

AU Data Residency

Australian data centre hosting

Australian Privacy Principles (APPs)

OAIC guideline compliance

Data sovereignty guarantee

No offshore data transfer

Compliance

Standards we meet

SOC 2

Type II Aligned

Security, availability, and confidentiality controls

OAIC

Compliant

Office of the Australian Information Commissioner

APPs

13 Principles

Australian Privacy Principles framework

WCAG 2.1

AA Level

Web Content Accessibility Guidelines

AES-256

GCM Mode

Military-grade encryption standard

TLS 1.3

Enforced

Latest transport layer security

Data residency

Your data stays in Australia

All patient data, practice information, and application records are stored exclusively in Australian data centres. We guarantee that your data never leaves Australian jurisdiction.

Sydney, NSW

Primary data centre

Online

Melbourne, VIC

Secondary data centre

Online

Security features

Defence in depth

Multi-Factor Authentication

Enforced MFA for all user accounts with TOTP and SMS-based verification options.

Role-Based Access Control

Four granular roles (Admin, Manager, Staff, Viewer) with permission isolation across tenants.

Audit Logging

Every action is logged with user, timestamp, IP address, and change details. Immutable audit trail.

PII Encryption

All personally identifiable information encrypted at rest using AES-256-GCM with per-tenant key management.

Infrastructure Security

Edge-deployed on Vercel with DDoS protection, WAF, and automatic SSL certificate management.

Incident Response

24-hour incident response SLA with automated alerting, runbook procedures, and stakeholder communication.

Ready to transform your practice?

Join 500+ practices across Australia already using HSuite to streamline applications and grow revenue.

Talk to our team

Enterprise-Grade Security for Healthcare Data

Three pillars of trust

Enterprise Security

Real-time Sync

Australian Hosted

Standards we meet

Your data stays in Australia

Defence in depth

Multi-Factor Authentication

Role-Based Access Control

Audit Logging

PII Encryption

Infrastructure Security

Incident Response

Ready to transform your practice?

Enterprise-Grade Security for Healthcare Data

Three pillars of trust

Enterprise Security

Real-time Sync

Australian Hosted

Standards we meet

Your data stays in Australia

Defence in depth

Multi-Factor Authentication

Role-Based Access Control

Audit Logging

PII Encryption

Infrastructure Security

Incident Response

Ready to transform your practice?

Enterprise-Grade Security
for Healthcare Data

Enterprise-Grade Security
for Healthcare Data