Skip to main content

Trust · Transparency report

Government requests. Breaches. Uptime. AI overrides.

Once a quarter we publish, in plain language, every government data request received, every notifiable breach disclosed, every clinical AI model override, every content-moderation action taken on social.conceptualhealth, and the platform-wide uptime. If anything in this report ever surprises you, write our compliance officer — that is what they are there for.

Phase 1 · Honesty

Conceptual Healthcare Corporation is in pre-launch. No live customer transactions, no public hc.exchange spot trading, no paying clinics on a live MSA. The numbers below reflect that reality: zero government requests received, zero notifiable breaches disclosed, zero AI model overrides reviewed, and zero content-moderation actions, because none of those events have happened yet.

Phase 2 begins when the first paying clinic countersigns its MSA and the first transaction settles on chain. From that day forward, this page updates in real time from /api/v1/site/facts, and every quarter we issue a signed snapshot. We will never publish illustrative numbers as if they were real. "Integrity in all we do."

§ 01
Government requests
0 received
§ 02
Breach log
0 notifiable
§ 03
Uptime
N/A · pre-launch
§ 04
AI overrides
0 reviewed
§ 01 · Government & legal requests

What we received. What we served.

Every legal process served on Conceptual Health is logged, reviewed by counsel, and counted here. We push back on overbroad requests, narrow them where possible, and challenge those without proper process. We never volunteer PHI and we always notify the affected patient unless legally barred from doing so.

0
Total received this quarter
Pre-launch
0
Records produced
0
Challenged or quashed
0
Patients notified

What this section will look like in Phase 2: a per-request-type table — civil subpoena, criminal subpoena, search warrant, NSL, foreign court order, civil investigative demand, FTC / state AG request — with per-request notes on narrowing, challenge, and patient notification. Today the table is empty.

§ 02 · Breach log

Every notifiable breach. Closed or open.

HIPAA Breach Notification Rule defines a breach as the acquisition, access, use, or disclosure of PHI in a manner not permitted under the Privacy Rule that compromises its security or privacy. We disclose every notifiable breach here on the same business day we report it to OCR. We also disclose non-notifiable security incidents (lost devices, suspicious access patterns) for transparency, even when no PHI was exposed.

0
Notifiable breaches QTD
Pre-launch
0
Notifiable breaches all-time
0
Non-notifiable incidents
0
Individuals ever affected

What we will publish for each event: detection timestamp, OCR disclosure timestamp, scope (PHI fields exposed), affected individuals, root cause, remediation, postmortem link, lessons-learned governance event. We will never anonymize a breach event by omitting it. If a breach happens, you will read about it here before you read about it anywhere else.

§ 03 · Uptime

Patient-facing uptime. Measured, not promised.

We do not publish a 99.9% uptime claim today, because we have not yet operated long enough at production load to back one. Once Phase 2 begins and the first 90 days of measured production traffic are in the books, this section will show a per-component daily heatmap and a rolling 30 / 90 / 365-day percentage straight from /api/v1/site/facts.

N/A
Last 30 days
Pre-launch
N/A
Last 90 days
N/A
Trailing year
0
Incidents · last 30 days

Status page (live, reads from the same source): status.conceptualhealth.com. Once Phase 2 begins, this section embeds the rolling heatmap and the SLA target per component.

§ 04 · AI model overrides

Where the model was wrong. And what we did about it.

Every clinical AI suggestion that is overridden by a clinician, every patient-facing AI response flagged by the user as wrong, and every content-moderation action that is appealed and reversed — those are the events that teach us what the model gets wrong. We count them, publish the count, and for the highest-severity ones publish the lesson learned.

0
Suggestions overridden QTD
Pre-launch · model in clinician-supervised use
0
Reviewer reversals QTD
0
Moderation actions QTD
0
Appeals upheld

Phase 1 framing: the in-house clinical AI (GuardianOrb medical brain, BGE-large embeddings, Qwen2.5-7B inference) is in pre-launch validation with a physician-reviewer queue and an HMAC-chained audit trail. Every suggestion already gets reviewed before it reaches a patient surface. When Phase 2 begins, the rate of override and reversal becomes a public number, on this page, every quarter.

§ 05 · How we will publish each report

Cadence, signing, archive.

  • Quarterly cadence. A snapshot of the /api/v1/site/facts transparency block is signed and posted within 30 days of quarter-end.
  • Signed snapshot. Each quarterly snapshot is hashed (SHA-256), signed by the Privacy Officer's Ed25519 key, and anchored to chain.conceptualhealth.com as a transparency-event entry.
  • Archive. All prior quarters remain on this page, oldest at the bottom, with their signed hash and chain anchor visible.
  • No re-write. Once a quarter is published and signed, the numbers do not change. A correction (clerical, scoping, late-arriving event) is appended as a new entry with its own hash and a link back to the original.
  • Phase 1 today. Until Phase 2 begins, every section above shows zero. We would rather show zero than estimate.