Skip to main content
Compliance & Security

Built for Indian healthcare regulations

ABDM-certified, DISHA-compliant, NABH-ready, NABL-aligned. MedOS doesn't bolt on compliance — it's baked into the architecture.

ABDM / Ayushman Bharat Digital Mission

MedOS is a certified Health Information Provider (HIP) on the ABDM network.

ABHA (Health Account) creation and linking for every patient
Patient consent management via ABDM consent manager
FHIR R4 document push to the Health Information Exchange
PM-JAY claim generation via NHA API
Ayushman Card verification at OPD registration
Two-way health record exchange with other ABDM participants

DISHA — Digital Information Security in Healthcare Act

Consent-driven data access framework embedded in every MedOS interaction.

Purpose-limited data collection with explicit consent
Right to access, correct, and delete personal health data
Data breach notification within 72 hours
Appointed Data Protection Officer
Regular privacy impact assessments
Consent audit trail for all data access

NABH — National Accreditation Board for Hospitals

Pre-built templates and workflows that map to NABH quality standards.

SOP templates for clinical processes
Quality manual documentation framework
Incident reporting and tracking module
Patient safety indicator dashboards
Medication error tracking
NABH documentation bundle available as add-on (Rs 24,999)

NABL — ISO 15189 Laboratory Accreditation

Lab module designed from the ground up for NABL compliance.

Multi-level result validation (technician > pathologist > release)
Sample barcode tracking from collection to reporting
Bi-directional analyzer interfacing (Beckman, Mindray, Sysmex)
TAT reporting for all test categories
Quality control charts and Levey-Jennings plots
Critical value alerting workflow

Enterprise-grade security

Your patient data is protected at every layer

Encryption

  • AES-256 encryption at rest
  • TLS 1.3 in transit
  • Encrypted database backups

Infrastructure

  • AWS Mumbai region (ap-south-1)
  • Data never leaves India
  • Multi-AZ redundancy

Access Controls

  • Role-based access control (RBAC)
  • OTP-based authentication
  • Auto session timeout (30 min)

Audit & Monitoring

  • Complete audit trail for all actions
  • CERT-In aligned incident response
  • 24/7 infrastructure monitoring

Additional standards

IT Act 2000 / SPDI Rules

Sensitive Personal Data handling compliance

GST Compliance

Auto CGST/SGST/IGST with NIC e-invoice (IRN) generation

HIPAA Technical Safeguards

Encryption, audit controls, auto logoff, unique user IDs

HL7 FHIR R4

Standard format for electronic health record exchange

HL7 v2.x

Legacy lab equipment and hospital system integration

CERT-In Guidelines

Incident response plan aligned with healthcare directives

Compliance should not be an afterthought

MedOS handles ABDM, DISHA, GST, and NABH requirements so you can focus on patient care.

Start Free TrialRequest Compliance Report