End-to-end workflow
Org admins can create tenants, roster staff, upload immunization / police check / TB docs, and watch them move from “Queued for review” → “Approved / Needs info”.
Upload staff requirements, route them through OCR + reviewers, and hand auditors an immutable trail — all before January onboarding ramps.
Org admins can create tenants, roster staff, upload immunization / police check / TB docs, and watch them move from “Queued for review” → “Approved / Needs info”.
Human reviewers see the original file, extracted fields, ClamAV verdict, and audit context side-by-side, with comments + supporting URL history captured automatically.
POST /ingest returns a document_id, hashes uploads for dedupe, and exposes a review queue / webhook so the portal stays the source of truth.
Terms, Privacy, and Trust Center copy highlight human oversight, limited pilot scope, and ISO‑42001 adoption commitments.
Every credential is queued for reviewer sign-off. OCR results stay advisory so organs & auditors see a clear chain of custody.
Documents land in an encrypted S3 bucket in ca-central-1. Access is brokered through time-boxed signed URLs with full audit logging.
Risk registers, change control, reviewer SOPs, and data-subject runbooks ship with the alpha. Full certification follows once pilots graduate.
Smoke tests cover tenant creation → upload → approval → export, with runbooks for incident, restore, and data subject requests.
Email alpha@compliancehealth.ca to be provisioned as an Org Admin or Reviewer. We run onboarding calls weekly across Nov 14 — Dec 1 with a go/no-go rehearsal on Nov 28.