Tenant-aware healthcare SaaS
An overview of how DDxHelper separates customer environments for governance and oversight.
Updated March 2026 · Ron Motley, MSc, PA-C (Inactive) · AI Medical Innovations
Why tenancy is a healthcare question
Every multi-customer SaaS platform has to answer the same architectural question: how is one customer's data kept apart from another's? In healthcare the question carries extra weight, because the data involved is clinical, the buyers are accountable for governance, and security review is part of every serious procurement. "Tenant-aware" describes an architecture where that separation is a first-class design property — built into how data is stored, accessed, and audited — rather than an assumption layered on top.
What tenant-awareness means in DDxHelper
- Logical separation of customer environments. Each customer organization operates in its own tenant. Encounters, transcripts, notes, and suggestions belong to that tenant, and processing is scoped to it.
- Role-based access control. Within a tenant, access follows clinical responsibility — providers, staff, and administrators see what their role requires, under least-privilege defaults.
- Encryption in transit and at rest. Encounter audio, transcripts, and documentation are encrypted as they move and as they're stored, with strong key management.
- Audit logging. Access and activity are logged in detail, supporting internal oversight, review, and incident response.
Why buyers should care about the boundary
Tenancy is not just an engineering nicety — it is what makes organizational governance possible. Clear tenant boundaries let a healthcare organization answer its own oversight questions: who in our organization accessed our data, under what role, and when. They give security teams a concrete model to evaluate instead of a marketing adjective. And they keep responsibilities legible as an organization grows from one clinic to many sites on the same platform.
The marketing site is outside the boundary
One boundary worth stating plainly: this public website is not part of the clinical platform. The DDxHelper application — authenticated workflows, encounter capture, and anything involving PHI — lives separately at https://portal.ddxhelper.com. The marketing site collects no protected health information, and product examples shown here use synthetic clinical content only.
Careful language, on purpose
DDxHelper is designed with HIPAA-aligned security and privacy principles, and security is part of our development lifecycle rather than an afterthought. We deliberately do not claim formal certifications on this site unless they are explicitly in place — we would rather describe, accurately, how the platform is built and operated. Security and compliance teams evaluating DDxHelper are welcome to go deeper: contact us and we'll walk through the architecture, controls, and roadmap directly.
DDxHelper is intended to assist healthcare professionals with clinical documentation and workflow support. It does not replace independent medical judgment, diagnosis, or treatment decisions by a licensed healthcare professional.