Security you can build a practice on
Claim files contain sensitive information. ClaimFileHQ is built with security as a foundation, not an afterthought.
SOC 2 Type II infrastructure
ClaimFileHQ runs on cloud infrastructure that maintains a SOC 2 Type II attestation, with hardened, regularly audited data centers.
Encryption in transit & at rest
All traffic is served over TLS, and data is encrypted at rest in our managed database and storage.
Role-based access control
Granular roles for owners, managers, reviewers, and staff so people only see what they should.
Full activity logging
Every meaningful action on a claim file is captured for a clean, reviewable audit trail.
Least-privilege & secrets handling
Secrets live in environment configuration, never in code, with least-privilege access for internal systems.
Secure-by-default app
Strict security headers, input validation, and abuse protection on forms and APIs.
A note on certifications: ClaimFileHQ runs on SOC 2 Type II–certified infrastructure. Formal company-level certifications (such as our own SOC 2 audit) are on our roadmap as we grow. For specific security or compliance questions, reach us at support@claimfilehq.com.