Run CliniKite on our secure Indian cloud — encrypted and scoped to your clinic — or on-premise, where records never leave your building. On either plan, we never sell, share, or mine your patient data.
Each commitment below is a direct outcome of how the product is designed. They are not optional settings or premium upgrades — they are the default behaviour of the platform.
CliniKite earns revenue from software — clinic subscriptions, licences, and optional add-ons. On no plan do we sell aggregated data, derive analytics from your records, or engage in pharmaceutical-industry data partnerships.
On CliniKite Cloud, your data is encrypted at rest and in transit, and every request is strictly scoped to your clinic so staff only ever see their own patients. On-premise installations add full-disk encryption on hardware you control.
Choose the On-Premise plan and every record stays on a machine at your clinic. Your team holds the database and backup credentials, and the system keeps working on the local network during internet outages.
When AI assistance is used, a privacy filter removes names, dates of birth, phone numbers, addresses, and identity numbers before any request leaves your clinic.
India’s Digital Personal Data Protection Act (DPDP) comes into full effect in May 2027. The Act places clear obligations on any organisation that holds personal data, including the responsibilities of the data fiduciary, consent management, breach notification, and data-principal rights.
Your clinic is always the data fiduciary for its patients. On On-Premise, records never leave your clinic, so you are the sole fiduciary end to end. On Cloud, CliniKite acts as your data processor under a written agreement, with all data hosted in India — and data-principal requests are handled through the CliniKite interface either way.
Each answer covers the practical implication for your clinic. More detailed documentation is available on request, including a technical summary suitable for IT or security review.
It depends on the plan you choose. On CliniKite Cloud, records are hosted on our secure multi-tenant platform in an Indian data region (AWS Mumbai), encrypted and strictly scoped to your clinic. On On-Premise, records are stored only on a machine at your clinic and never leave the building.
We never sell, share, or mine your clinical data on any plan. On Cloud, we operate the hosting on your behalf as your data processor, with access limited to authorised support that you request and that is time-bound. On On-Premise, CliniKite has no administrative access to your database at all.
Each clinic can export its complete records in an open, documented format at any time. On-Premise clinics keep the application and database outright; Cloud clinics receive a full export and can migrate to On-Premise. Your practice is never stranded.
Every AI request passes through a privacy filter that removes patient identifiers before the request is sent. The AI provider receives clinical text without names, dates of birth, contact details, or identity numbers.
On On-Premise, your clinic is the sole data fiduciary for its patient records, which keeps consent, access, correction, and erasure entirely in your hands. On Cloud, your clinic remains the data fiduciary and CliniKite acts as your data processor under a written agreement, with data hosted in India.
The diagram below shows the On-Premise model: what stays inside your clinic and what — only de-identified AI requests — ever leaves. Detailed technical documentation for both Cloud and On-Premise is available during the evaluation process.
