Built to protect the most sensitive records you keep.
Group homes hold protected health information for vulnerable kids. HavenLog is designed around that responsibility — with isolation, encryption, least-privilege access, and a tamper-evident record of who saw what.
Tenant isolation by default
Every facility's data is separated at the database level with row-level security, so one home can never read another's records — even through the API.
Encrypted sensitive identifiers
Social Security numbers are encrypted with AES-256-GCM at the application layer. Only the last four digits are shown, and the database never stores plaintext.
Private files, signed links
Photos, receipts, and documents live in a private bucket and are served only through short-lived signed URLs — never public links.
Role-based, minimum-necessary access
Admins, managers, and caregivers see only what their role requires. Confidential records are restricted to admins and managers.
Immutable audit trails
Document views, PHI access and reveals, and every incident change are written to append-only logs that can't be edited or deleted.
Controlled external sharing
Read-only resident links for caseworkers are scoped to exactly what you choose, can carry an expiry, and are revocable at any time.
HIPAA & responsible data handling
We apply minimum-necessary access principles throughout the product and maintain audit trails appropriate for healthcare- adjacent records. A Business Associate Agreement (BAA) is available for facilities that require one.
Resident records are never used to train AI models. AI summaries for paid facilities send only the relevant resident context to our AI provider to generate the summary.
Found a vulnerability? Please report it to security@havenlog.org.
Documentation you can defend
Keep kids well cared for and your team protected — with a record that holds up.
Get started free