Security profile for healthcare organizations handling protected health information (PHI).
Deploy in 30 minThis is what your OpenClaw config looks like. Deploy it on Clawctl in 30 min.
# Clawctl Security Profile — HIPAA
# Good for: healthcare, dental, veterinary, med spa
{
"security": {
"level": "enterprise",
"hipaa": true,
"egress": {
"filter": true,
"strict": true,
"allowed_domains": ["ehr-api.example.com"]
},
"audit": {
"retention_days": 2190,
"phi_logging": true
},
"secrets": { "encryption": "aes-256" },
"guardrails": {
"blocked_patterns": ["SSN", "DOB_with_name"],
"require_approval": ["share_patient_data"]
}
}
}PHI-aware data handling rules
Strict egress filtering (healthcare APIs only)
Extended audit retention for HIPAA
Encrypted data at rest and in transit
Access logging for all PHI interactions
BAA-ready configuration
Healthcare organizations deploying AI agents
Dental and veterinary clinics with patient data
Telehealth platforms with AI assistants
Healthcare IT teams evaluating AI security
Enterprise-grade with SIEM export, RBAC, 365-day retention, and compliance evidence generation.
Enterprise plans support BAA agreements. Contact us for details.
Only via approved integrations with strict egress filtering. All access is logged and auditable.
Enterprise plans offer VPC/self-hosted deployment for data residency requirements.
30 min to deploy. $49/month. Full security included. No DevOps required.
Get Started with ClawctlMinimal Security Profile
Basic security for development and testing. Relaxed restrictions, full tool access, minimal approval gates.
Standard Security Profile
Production-ready security with approval gates, egress filtering, and audit logging. The Clawctl default.
Enterprise SOC 2 Profile
Enterprise security with SIEM export, 365-day retention, RBAC, and SOC 2 compliance evidence.