Kynara/Solutions/Healthcare
๐Ÿฅ Healthcare

Deploy clinical AI agents with HIPAA-grade governance

Kynara gives healthcare organizations per-action policy enforcement, mandatory human approval for patient-data actions, and a tamper-evident audit log that satisfies HIPAA, HITRUST, SOC 2, and state-level privacy laws.

Book a demo Try the policy sandbox
HIPAA BAA (Enterprise) HITRUST CSF mapping SOC 2 Type II Minimum necessary access PHI access audit trail Break-glass JIT grants
The challenge

Healthcare AI agents face unique compliance requirements

HIPAA's minimum necessary standard, state privacy laws, and clinical safety requirements mean healthcare AI agents need stricter governance than any other industry. Kynara enforces this at the infrastructure level.

Without Kynara
  • โœ• AI agent accesses full patient record when only a lab result was needed
  • โœ• Clinical decision support agent makes a recommendation with no physician review
  • โœ• PHI accessed from outside approved geographies or after hours
  • โœ• No audit trail when a patient requests access logs under HIPAA
  • โœ• Agent acting for a medical assistant can access data above their clearance
With Kynara
  • โœ“ Minimum-necessary enforcement: agents granted only the specific fields required
  • โœ“ Clinical recommendations require attending physician approval before delivery
  • โœ“ PHI access restricted to approved facilities and business hours by policy
  • โœ“ Every PHI access is hash-chained โ€” complete audit log for HIPAA requests
  • โœ“ Agent permissions intersect with the clinician's own access level
Use cases

Built for clinical and healthcare AI workflows

๐Ÿฉบ
Clinical decision support
Require attending physician approval before any AI-generated clinical recommendation reaches a patient. The agent pauses until a licensed clinician approves, with a mandatory justification logged.
๐Ÿ“‹
Patient record access
Enforce minimum-necessary: agents can only access the specific fields the workflow requires. A scheduling agent cannot read lab values; a billing agent cannot read diagnoses.
๐Ÿ’Š
Medication management
Block medication write actions outside approved hours and require pharmacist approval above defined dosage thresholds. Every interaction is logged for DEA and state board audits.
๐Ÿ“Š
Population health analytics
Allow de-identified population queries freely. Gate any query returning identifiable records behind MFA verification and a declared purpose string โ€” logged in the audit chain.
๐Ÿ”
EHR & FHIR integration agents
Agents connecting to Epic, Cerner, or FHIR APIs are scoped to exactly the resource types and patient populations they need. Cross-patient queries require explicit approval.
๐Ÿšจ
Emergency break-glass access
JIT grants enable emergency elevated access for on-call clinicians, with mandatory justification, automatic expiry, and full audit trail โ€” satisfying HIPAA break-glass requirements.
Policy example

Enforcing minimum necessary in code

This policy allows a clinical AI agent to read basic demographic fields but requires attending physician approval before accessing diagnosis or medication records:

{
  "display_name": "PHI access โ€” require approval for clinical data",
  "effect":       "require_approval",
  "priority":     100,
  "actions":      ["ehr.read"],
  "condition": {
    "op": "in",
    "args": [
      "ctx.resource.attrs.record_type",
      ["diagnosis", "medication", "lab_result", "imaging"]
    ]
  }
}

// Second policy: allow demographics freely
{
  "display_name": "PHI access โ€” allow demographics",
  "effect":       "allow",
  "priority":     200,
  "actions":      ["ehr.read"],
  "condition": {
    "op": "eq",
    "args": ["ctx.resource.attrs.record_type", "demographics"]
  }
}

In your clinical AI agent:

from kynara_sdk import permission_required

@permission_required(
    "ehr.read",
    resource_arg="patient_id",
    resource_type="patient_record",
    resource_attrs=lambda patient_id, record_type: {
        "record_type": record_type,
        "patient_id": patient_id,
    }
)
def read_patient_record(patient_id: str, record_type: str):
    return ehr.get_record(patient_id, record_type)

# Diagnosis access โ†’ pauses for physician approval
# Demographics โ†’ proceeds immediately
# Every call โ†’ recorded in audit chain
HIPAA minimum necessary: The policy engine enforces that agents only access what the current workflow actually requires โ€” not what they technically could access.
Compliance

HIPAA and HITRUST requirement mapping

HIPAA / HITRUST RequirementKynara FeatureStatus
Minimum necessary standard (ยง164.514(d))Per-action ABAC conditions on resource type and fieldBuilt-in
Access controls (ยง164.312(a)(1))RBAC roles + ABAC conditions, non-escalation guaranteeBuilt-in
Audit controls (ยง164.312(b))SHA-256 hash-chained audit log, append-only, CSV exportBuilt-in
Person/entity authentication (ยง164.312(d))JWT + API key auth, Okta/SAML/OIDC SSOBuilt-in
Emergency access procedure (ยง164.312(a)(2)(ii))JIT grants with justification + auto-expiryBuilt-in
Workforce supervision of automated systemsrequire_approval as first-class policy outcomeBuilt-in
Business Associate Agreement (BAA)HIPAA BAA availableEnterprise
Data residency (state laws)Residency middleware, regional endpoint enforcementBuilt-in
"

Our compliance team was blocked on deploying clinical AI agents until we found Kynara. The audit chain and the require_approval workflow gave us exactly what we needed for our HIPAA BAA โ€” our counsel reviewed it in a day.

VP of Engineering
Series C Digital Health Platform
๐Ÿฅ Healthcare

Ready to deploy HIPAA-compliant AI agents?

Enterprise plans include a HIPAA BAA, custom data retention, and dedicated deployment. Free plan available with no credit card required.

Book a demo Try the policy sandbox