Protect protected health information across clinical applications, databases, claims workflows, analytics, and AI. Ubiq encrypts, tokenizes, or masks sensitive values, then evaluates the requesting identity, context, and policy at runtime to return cleartext, masked, or tokenized data appropriate to the workflow.
Trusted in production by security & data teams
Independently attested
SOC 2 Type II
PCI DSS SAQ-D
CMMC 2.0 Level 1Protected health information, or PHI, is individually identifiable health information held or transmitted by a HIPAA covered entity or business associate in electronic, paper, or oral form. Electronic PHI, or ePHI, is the subset maintained or transmitted electronically. Effective PHI data protection reduces where patient and member data appears in cleartext while preserving the care, payment, operations, analytics, and support workflows that legitimately need to use it.
Encrypt, tokenize, or mask selected fields and records instead of relying only on storage, network, database, or perimeter controls that can still expose data through approved access paths.
Ubiq evaluates the requesting identity, context, and policy at runtime so access to an application, database, or dataset does not automatically reveal every underlying PHI value.
Use cleartext only where the workflow requires it, partial masking for verification, and deterministic tokens for approved correlation and joins without broadly exposing original identifiers.
Protect the value, then return only the representation each healthcare workflow needs.
The appropriate protection method depends on the data, workflow, and required use. These examples show how encryption, tokenization, and masking can reduce cleartext exposure while healthcare systems continue to operate.
| Type | Original value | Method | Protected value (output) | Protected result |
|---|---|---|---|---|
| Medical record number | MRN-4829-7712 | Tokenize | MRN-7351-2086 | TokenizedDeterministic token supports approved correlation without the original MRN |
| Patient name | Maria Chen | Mask | M•••• C••• | MaskedDirect identity is obscured for lower-trust workflows |
| Date of birth | 1985-04-17 | Mask | 1985-••-•• | MaskedYear remains available when full birth date is unnecessary |
| Clinical note | Follow-up after cardiac procedure | Encrypt | 9X2M-7K4Q-P8R1-T6V3 | EncryptedStored and shared as protected text until an approved reveal |
TokenizedDeterministic token supports approved correlation without the original MRN
MaskedDirect identity is obscured for lower-trust workflows
MaskedYear remains available when full birth date is unnecessary
EncryptedStored and shared as protected text until an approved reveal
Protect patient identifiers and clinical values before they spread into claims systems, warehouses, reports, lower environments, vendor workflows, and AI access paths.
Healthcare organizations already use IAM, EHR roles, database permissions, encryption at rest, network controls, and audit systems. Those controls matter, but they do not always govern which version of each PHI value is returned after an identity reaches an approved application, database, API, or analytics path.
IAM, EHR roles, application permissions, and database grants decide who can reach a system. They do not always determine which version of each PHI value is returned after access is allowed.
Storage encryption protects media and database files, but approved applications, queries, privileged users, and compromised credentials can still receive ePHI in cleartext.
Patient and member data moves into claims platforms, warehouses, reports, support tools, lower environments, vendor workflows, and AI systems where source-system controls may not follow it consistently.
A fixed masked or transformed dataset may be too restrictive for an approved clinical or payment workflow and may still expose more information than analytics, support, development, or automated access paths require.
Ubiq closes that runtime gap by protecting the value and evaluating identity, context, and policy when PHI is requested.
How Ubiq works
Ubiq evaluates the requesting identity, context, and policy at runtime, then returns the PHI representation appropriate to that access path.
Access request
Protected patient record
Real-time evaluation
Runtime data outcome
Approved care workflow receives the required patient record
Can verify the patient without reading every identifier
Can analyze clinical trends and correlate records without receiving original patient identifiers
Receives only the detail needed for the assigned task
Protected once. Resolved differently at runtime for each identity.
PHI moves through far more than an EHR. These are the workflows where value-level protection and identity-governed runtime outcomes reduce unnecessary cleartext exposure.
Protect patient identifiers and clinical fields while approved care workflows receive the values required to deliver treatment and coordinate care.
Protect member IDs, claim identifiers, demographic data, and other PHI as it moves through revenue-cycle, payer, clearinghouse, and payment workflows.
Give analysts and BI tools deterministic tokenized identifiers for approved correlation and joins without broad access to original patient or member identifiers.
Reveal partial values for identity verification and service while limiting unnecessary access to full dates of birth, member IDs, medical record numbers, and clinical detail.
Provide realistic protected data to engineering, QA, and vendor workflows without copying cleartext PHI into environments with broader access.
Return masked or tokenized PHI to AI access paths when cleartext is not required, while approved clinical and operational identities retain the access their work needs.
Ubiq provides a SaaS control plane while protection and reveal operations execute through integrations inside your environment. PHI does not need to be sent to Ubiq, and teams can apply encryption, tokenization, or masking without adding a central token vault.
Apply PHI protection through SDKs and APIs where patient data enters, leaves, or is used by healthcare application workflows.
Protect and reveal sensitive fields through SQL UDFs and database and data warehouse integrations.
Use the identities, groups, roles, and access policies your organization already manages to govern runtime data outcomes.
Ubiq coordinates policy through its SaaS control plane while protection and reveal operations run through integrations inside your environment, so PHI does not need to be sent to Ubiq.
Use your HSM or KMS where required so cryptographic key ownership stays with your security team.
Use vaultless tokenization without adding a lookup database that becomes another store of sensitive healthcare data to scale, secure, and recover.
PHI data protection is the set of administrative, physical, and technical safeguards used to protect individually identifiable health information held or transmitted by a HIPAA covered entity or business associate. Ubiq supports the technical control layer by encrypting, tokenizing, or masking sensitive values and governing the representation returned to each identity at runtime.
PHI includes protected health information in electronic, paper, or oral form. ePHI is the subset of PHI maintained in or transmitted by electronic media. The HIPAA Security Rule specifically addresses ePHI, while the HIPAA Privacy Rule applies more broadly to PHI.
Ubiq protects selected fields and records using encryption, vaultless tokenization, masking, and format-preserving protection where appropriate. Ubiq evaluates the requesting identity, context, and policy at runtime, then returns the configured cleartext, masked, or tokenized representation for that workflow.
No single product makes an organization HIPAA compliant. HIPAA requires regulated entities to implement reasonable and appropriate administrative, physical, and technical safeguards based on their environment and risk analysis. Ubiq provides technical controls that can support a HIPAA security program by reducing unnecessary cleartext ePHI exposure and governing data outcomes by identity and policy.
Encryption at rest protects storage media and database files, but applications, queries, privileged users, and compromised credentials can still receive ePHI in cleartext through approved access paths. Value-level protection reduces this runtime exposure by keeping selected fields protected and controlling when cleartext is returned.
No. HIPAA de-identification has specific standards and implementation methods, including Expert Determination and Safe Harbor. Tokenized or masked data should not be described as de-identified PHI unless the organization has satisfied the applicable HIPAA requirements. Ubiq tokenization and masking can reduce exposure while the data remains governed as PHI.
The HIPAA Privacy Rule generally requires reasonable efforts to limit many uses, disclosures, and requests for PHI to the minimum necessary for the intended purpose, subject to defined exceptions, including certain treatment-related access. Ubiq can support an organization’s access-control and data-minimization objectives by returning cleartext, partially masked, or deterministic tokenized values according to identity and policy.
Yes. Analytics services, AI agents, and automated workflows can receive masked or deterministic tokenized representations when cleartext is not required. Approved healthcare applications and users can receive the values their workflows require, with Ubiq evaluating identity, context, and policy at runtime.
Use the protection method that fits each PHI field, then govern runtime outcomes through the same identity-aware policy model.