Security & Compliance

Healthcare-grade security by design

PuzzleSoft is engineered for the most sensitive data on the planet — medical records — and certified to the standards healthcare leaders trust.

ISO 27001 ISO 27799 ISO 9001

End-to-end encryption in transit and at rest across all PuzzleSoft systems.

Hardened FHIR APIs with Fortinet protection, secured VPN and audit logging.

Granular RBAC, consent management and clinician-level access controls.

Patient-controlled sharing and AI validation before any external exchange.