Now in early accessBuilt for Claude Code

Every AI change. One verdict.

AI coding agents are transforming healthcare IT. But regulated industries need proof that every change meets HIPAA, SOC 2, and HITRUST requirements. Verdict generates that proof automatically.

Request Early Access See How It Works

See it in action

Ask Claude about compliance mid-session. Click a scenario to watch.

claude — ~/healthtech/ehr-platform

verdict mcp active

$Is PR #42 for the patient intake form compliant? I want to merge it.

verdict.get_compliance_verdict

ResultPASS

Sessions

2 captured

Developer

jane@healthtech.com

Agent

Claude Code v2.1

Ticket

EHR-1847

PHI Risk

None

Duration

45 min

✓SOC 2 CC8.1 — Change authorized via EHR-1847

✓HIPAA §164.312(b) — Audit trail complete

✓HITRUST 09.b — Documentation present

PR #42 passes all compliance checks. Two sessions captured totaling 45 minutes. The change is authorized via ticket EHR-1847, no PHI was detected, and all framework controls are satisfied. Safe to merge.

The Problem

AI agents break change management

AI coding agents generate code at 10x the pace of human developers. Compliance teams designed for human velocity can't keep up.

No audit trail for AI-generated changes
PHI exposure risk in prompts and file access
Manual documentation is unsustainable
Compliance teams block AI adoption entirely

The Solution

Automatic compliance for every session

Verdict captures every AI agent session, evaluates it against compliance policies, and delivers audit-ready evidence — before code merges.

Full provenance: who, what, when, why
Automatic PHI detection and redaction
Maps to SOC 2, HIPAA, HITRUST controls
Syncs to Vanta, Drata, Secureframe

Three steps. Zero manual effort.

Install once, capture everything, stay compliant automatically.

Install

One command to hook into your AI coding agent. Works with Claude Code today, Cursor and Copilot coming soon.

$ verdict hook install

Code

Use your AI agent normally. Verdict captures session provenance in the background — prompts, files, commands, git context.

$ claude 'fix the auth bug'

Ship

Open a PR and Verdict annotates it with compliance status. Evidence syncs to your GRC platform. Auditors are happy.

$ verdict push --all

Purpose-built for healthcare compliance

Every field in a Verdict Change Record maps directly to regulatory requirements. Not generic logging — compliance by design.

Evidence	SOC 2	HIPAA	HITRUST
Developer identity	CC6.1	§164.312(a)	01.v
Agent + model version	CC6.8	—	—
Session timestamps	CC8.1	§164.312(b)	09.aa
Change authorization	CC8.1	—	09.b
PR review/approval	CC8.1	—	09.b
Files modified + hashes	CC8.1	§164.312(c)	09.b
PHI access monitoring	CC7.1	§164.312(b)	01.v

Works with your stack

Claude Code

MCP + Hook

Supported

Jira

Project Tracking

Supported

Cursor

AI Agent

Coming Soon

Vanta

GRC Platform

Supported

Drata

GRC Platform

Supported

Secureframe

GRC Platform

Supported

Ship AI-generated code with confidence

Join healthcare IT teams using Verdict to stay compliant while shipping faster with AI coding agents.

Request Early Access