Skip to main content
TryCaSIE logoTryCaSIE

Security

Privacy & Security Policy

HIPAA-aligned security built on Microsoft Azure.

How We Protect Your Data

TryCaSIE uses a defense-in-depth strategy across our Microsoft Azure infrastructure: multiple security layers protect Protected Health Information from the network up to the application.

Defense in Depth

Multiple security layers from network isolation to application-level controls protect against threats at every level.

Data Isolation

All data services are network-isolated with no public access. Traffic flows exclusively through private, encrypted channels.

Immutable Audit Logs

Every access and modification is recorded in tamper-proof logs.

Encryption & Network Security

All data is encrypted at rest and in transit using industry-standard encryption. Our infrastructure is network-isolated: no database or storage service is publicly accessible.

  • Encryption at rest for all stored data including notes and recordings
  • TLS encryption for all data in transit
  • Network-isolated architecture with no public access to data services
  • Strict firewall rules restricting traffic to authorized sources only

HIPAA Compliance

TryCaSIE is built on HIPAA-aligned Microsoft Azure services. Our infrastructure satisfies all Technical Safeguards required for handling Protected Health Information.

  • All data services are HIPAA-eligible Azure managed services
  • Network-isolated database and session storage with no public exposure
  • Secrets and credentials managed through Azure's dedicated vault service
  • Credential-free authentication between services using managed identities
  • AI processing through enterprise Azure services with no data retention

AI Data Usage & Privacy

Your client data is NEVER used to train AI models. We use enterprise-grade AI services with data processing agreements that explicitly prohibit training on your data.

  • Enterprise Azure AI services for intelligent note generation
  • HIPAA-compliant third-party transcription for voice-to-text
  • Business Associate Agreements in place with all AI providers
  • Patient data is never retained or used for model training
  • Enterprise data processing terms, not consumer API terms

Infrastructure & Data Residency

Your data resides on HIPAA-aligned Microsoft Azure infrastructure located in the United States. All services are fully managed with enterprise-grade security and reliability.

  • US-based data residency with no cross-border transfers
  • Fully managed Azure services for database, caching, and secrets
  • Encrypted backups retained for disaster recovery only
  • Soft-delete policies to prevent accidental data loss

Your Rights

You have full control over your data.

  • Access: Request a copy of all your data at any time
  • Correction: Update or correct any inaccurate information
  • Deletion: Request permanent deletion of your data
  • Portability: Export your notes in standard formats
  • Restriction: Limit how your data is processed

Security Incident Response

In the unlikely event of a security incident:

  • Notification within 72 hours of discovery as required by HIPAA
  • Detailed incident report including scope and nature of the breach
  • Remediation steps and timeline for resolution
  • Guidance on protective measures you can take

Contact Us

If you have questions about our security practices or privacy policy, please reach out:

Security Issues: hello@trycasie.com

Last updated: February 2026