Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.have-foresight.app/llms.txt

Use this file to discover all available pages before exploring further.

Data residency

All PHI is stored in AWS us-east-1. We do not replicate to other regions without explicit customer approval. Cross-border data transfers are not supported in the standard tier.

Retention

Data typeDefault retention
Patient demographics6 years past last activity (HIPAA minimum)
Claim & remittance records7 years (CMS requirement)
Audit logs6 years
Webhook delivery logs90 days
API request logs30 days
Operational metrics13 months
Custom retention is negotiable for enterprise tier.

Sub-processors

VendorPurposeBAA signed
AWSCloud infrastructure (us-east-1)Yes
StediX12 EDI clearinghouseYes
AWS HealthLakeFHIR R4 clinical data storeYes
AWS BedrockLLM inference (Claude family)Yes
PauboxHIPAA-encrypted emailYes
TwilioSMS notificationsYes
SentryError monitoring (PHI-scrubbed)Yes
The current list is also published in the dashboard under Settings → Compliance.

De-identification

Foresight does not de-identify PHI by default. If you need a de-identified extract for analytics or research, contact privacy@have-foresight.com.

Data subject requests

For patient data subject requests (access, correction, deletion under state privacy laws), use the dashboard’s Privacy workspace or contact privacy@have-foresight.com.