How does deployment work?

Certexi deploys on your infrastructure — on-premise, private cloud, or air-gapped environments. Basic deployment takes 1-2 days. Enterprise deployments with custom integrations typically take 1-2 weeks.

Your data stays on your own infrastructure (on-premise or private cloud). We use SSL/TLS 256-bit encryption, comply with GDPR, and align with ISO 27001. We never access your operational data.

How long does implementation take?

Basic implementation takes 1-2 days. For enterprise deployments with custom integrations, typically 1-2 weeks. Configuration support is included in all plans.

Does it work without internet?

Yes. Certexi operates locally on your network. Offline mode allows full operation for up to 60 days without connectivity. Data syncs automatically when connection is restored.

United States

HIPAA compliance evidence maintained on your infrastructure, under your control

Health Insurance Portability and Accountability Act (HIPAA)

PHI access logging, workforce training records, and breach documentation — all deployed on-premise so PHI never leaves your environment during the compliance process itself.

HHS Office for Civil Rights (OCR)United States

Request Architecture Session

Private deployment · Sovereign infrastructure · Architecture session included

About HIPAA

HIPAA establishes national standards for protecting sensitive patient health information. Covered entities and business associates must implement administrative, physical, and technical safeguards.

Top audit finding

"Workforce training records incomplete or not covering all required HIPAA topics"

Most common HIPAA non-conformance finding

Requirement mapping

HIPAA requirements — and how Certexi addresses them

Framework requirements

1Risk analysis and risk management with documented evidence
2Workforce training with completion records and regular updates
3Access management: workforce access authorization and review records
4PHI access log retention for six years
5Breach assessment with notification decision documentation
6Business associate agreement management

Certexi approach

On-premise deployment: PHI never leaves covered entity infrastructure for compliance purposes
PHI access logging integrated with clinical operational workflows
Workforce training matrix: HIPAA privacy and security training with completion evidence by role
Breach workflow: identify → risk score → notification decision → documentation → report
OCR investigation response: organized evidence by HIPAA rule and safeguard category

Industry relevance

Sectors where HIPAA compliance applies

Healthcare & Pharma

Core capabilities

Use cases central to HIPAA compliance

access control records training records incident reporting audit preparation risk assessment

PRICING

Aligned to Operational Value, Not User Count

Pricing scales with deployment scope, not headcount. Your data. Your infrastructure. Your rules.

All plans include private deployment. Your data never leaves your infrastructure.

ISO 27001 Aligned

Private Deployment

Unlimited Users

Currency

Pilot

Validate before you commit

Custom

5 spots per quarter

Full platform deployment
Configuration support
Onboarding and training
Direct product team access
Feedback-driven iteration
8-week evaluation period

Standard

Single-location operations

From $4,800 / month

per month, billed annually

All core platform capabilities
Standard template library
Private deployment included
Email support (24h response)
Quarterly platform updates
Unlimited users

Enterprise

Multi-location, high-compliance

Custom

Based on deployment scope

Everything in Standard
Custom template development
Dedicated support engineer
SLA guarantees
Advanced integrations
Air-gapped deployment option

Private Deployment Included in All Plans

Every plan includes full deployment on your infrastructure — Nextcloud, Linux servers, Docker, Kubernetes, or air-gapped environments. Your data never leaves your control.

HIPAA compliance evidence that never leaves your infrastructure.

Private deployment on your infrastructure. Architecture session included.

Request Architecture Session