medical-data-compliance
OfficialKeep PHI safe, encrypted, and auditable.
Legal & Compliance#encryption#synthetic data#audit logging#phi#health data#patient consent#data exfiltration prevention
AuthorXipher-Labs
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill prevents Protected Health Information (PHI) from being mishandled in AI-agent workflows by defining strict, enforceable rules for data sharing, storage, encryption, auditability, consent, and patient rights.
Core Features & Use Cases
- PHI handling guardrails: Prohibits sending PHI to external LLM APIs, transcription services, and common communication/storage channels (email/chat/cloud drives) and requires structured logging with field-level redaction.
- Synthetic-only development: Forces the use of synthetic or formally de-identified test data for local development and testing, with explicit rules against checking real or real-derived PHI into fixtures.
- Operational compliance controls: Requires encryption at rest and in transit, mandatory audit events for every read/write, revocable granular consent, and a pre-planned breach response with an reviewed threat model.
Quick Start
Apply the medical-data-compliance skill before designing or updating any feature that could touch patient data, and verify that the workflow uses synthetic/de-identified inputs while enforcing encryption, consent checks, and auditable access.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: medical-data-compliance Download link: https://github.com/Xipher-Labs/walter-os/archive/main.zip#medical-data-compliance Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.