yrcmdvideo
Phase 1 · Secure core
HIPAA-compliant telehealth video, done right.
Authenticated, end-to-end encrypted 1:1 visits on a hardened, self-hosted Jitsi stack — with an append-only audit trail on every access.
Compliance-first by design
- MFA required · session-scoped access · role-based permissions
- Per-room, short-lived Jitsi tokens — the browser never holds the app secret
- Postgres row-level security enforces tenant isolation at the database
- Append-only, tamper-evident audit log (verified at the DB level)