Back

SYS/SECURITY

Your practice's data, guarded like a chart.

VetHQ runs a real veterinary hospital every day, so security isn't a compliance checkbox — it's self-preservation.

Role-based access

Six staff roles — owner, practice manager, veterinarian, technician, receptionist, and read-only accountant — each see exactly what their job needs. The owner decides who sees the money.

Medical records stay protected

Pet parents never see clinical notes unless a veterinarian explicitly releases a patient's records. The portal shows only what an owner should see, enforced in code with a tripwire that fails closed.

Two-factor authentication

TOTP-based 2FA with single-use recovery codes. Magic links can never bypass a second factor.

Encrypted credentials

PIMS integration credentials are encrypted at rest. Portal links are unguessable, time-limited tokens stored only as hashes.

A defensible audit trail

Sign-and-lock notes, attributed addenda, and audit logs on sensitive actions — who did what, when.

Monitored around the clock

Error monitoring on every layer of the stack, so problems surface to us before they surface to you.