Protected Health Information (PHI) tags are the cornerstone of our HIPAA compliance strategy. They dictate the automated security controls applied to every cloud resource.
Any resource tagged with PHI:True is prohibited from having a Public IP address. Violation triggers an automatic firewall block within 60 seconds.
Governance Tiers
| Level | Security Protocol |
|---|---|
| PHI | BAA required, AES-256 encryption, 7-year log retention. |
| PII | Identity masking, MFA mandatory for all access. |
| Public | Standard encryption, no medical data permitted. |