Security

Effective date: 2026-06-04

This page describes TalkRight's security-oriented product principles and operational controls. Specific implementation details may vary by clinic configuration, integrations, and contract terms.

TalkRight is designed for healthcare communication environments where reliability, auditability, and responsible data handling matter.

Core Security Controls

TalkRight is designed to support:

• role-based access control for clinic users and administrators;
• separation between clinic accounts;
• audit logs for sensitive workflow actions where supported;
• encrypted HTTPS access to application endpoints;
• secure webhook handling for approved partners;
• Azure-hosted backend and database services for the core operational layer;
• controlled access to production infrastructure;
• data minimization for partner integrations.

AI And Voice Controls

TalkRight separates receptionist assistance from autonomous AI handling. For voice automation, partner settings should be configured to minimize retention and avoid unnecessary storage outside TalkRight systems where available.

Operational Monitoring

TalkRight uses platform logs and monitoring to detect failures, integration errors, webhook delivery issues, and service interruptions. Logging should be configured to avoid unnecessary patient data exposure.

Customer Controls

Customers can control:

• users and roles;
• routing mode selection;
• whether a call uses receptionist assist, autonomous handling, or normal clinic flow;
• clinic hours and after-hours automation;
• appointment and patient communication workflow configuration;
• integration settings where enabled.

Responsible Use

Healthcare providers remain responsible for configuring TalkRight appropriately, managing staff access, obtaining required notices or consents, and verifying clinical or appointment-related actions.

Contact

Security questions can be sent to: admin@talkright.net