Patient data that
lives in Australia.

Australian hosting, record-level encryption, and a permanent record of everything.

Your data lives in Australia. Every consult is captured and transcribed here, and your records are stored and encrypted record by record in Australian Key Vault, isolated to your practice. Every action is written to a tamper-evident audit you can check yourself. And nothing is final until a doctor has signed it.

Start free trial See the architecture

Sydney + Melbourne Record-level encryption 7-year tamper-evident audit Always doctor-signed

Four promises we build in.

These aren't slogans. They're how aurii is built.

It stays in Australia

Primary in Sydney, backup in Melbourne. Audio is captured and transcribed in Australia, and your records are stored and encrypted here, isolated to your practice.

Encrypted & isolated

Your data is encrypted record by record in Australian Key Vault and isolated to your practice. Ask us to purge it and it's destroyed for good, not just hidden.

Everything is recorded

Every action and every actor is written to an append-only, hash-chained record. It's kept for seven years and you can verify it end to end.

A doctor signs it

aurii drafts; the doctor decides. Nothing is final, sent or billed until a specialist has signed it.

Your data, encrypted, your country.

Patient data sits inside the Australian region, encrypted record by record in Australian Key Vault and isolated to your practice. Ask us to purge it and it's destroyed for good, not just hidden.

Your practiceData isolated to you

RECORD-LEVEL ENCRYPTION

Australian region HOSTED IN AUSTRALIA

Sydney — primary processing & storage
Melbourne — encrypted geo-redundant backup
Capture · transcribe · store — in Australia

Purge on request → your data is destroyed, not just hidden.

Offshore infrastructureNo records stored offshore

RECORDS STAY IN AU

Your data lives in Australia

Capture, transcription, storage and backup all run inside the Australian region. Your records are stored and encrypted here, record by record, isolated to your practice.

Record-level encryption. Sensitive clinical data is encrypted record by record in Australian Key Vault, isolated to your practice. Keys are rotated on a schedule and every version is logged, so it's auditable.
Purge and it's destroyed. Ask aurii to permanently purge your data and it's destroyed for good, not just hidden.
Sydney primary, Melbourne backup. Your data is replicated to a second Australian region, so it survives a regional outage. The backup stays in-region, so recovery never sends data offshore.
Records stay in Australia. Your clinical records are stored, encrypted and backed up in Australian regions, isolated to your practice.

A record that can't be quietly changed.

Every action in aurii is written to an append-only ledger: drafted, edited, reviewed, signed, sent. Each entry carries a hash of the one before it. Change or remove any record and the chain breaks, so it shows.

Progress note drafted09:12:04 AEST

Actor · aurii draft engine · POD 2 round note

hash3f9a…c204prev0000…genesis

GP letter generated09:12:07 AEST

Actor · aurii draft engine · referrer correspondence

hashb71e…8f3dprev3f9a…c204

Edited by specialist09:14:33 AEST

Actor · Dr R. Bennett · plan amended (d5 dressings)

hasha205…1cd7prevb71e…8f3d

Reviewed & signed09:15:01 AEST

Actor · Dr R. Bennett · electronic signature applied

hashe6c0…7a9bpreva205…1cd7

Issued · note · letter · billing09:15:02 AEST

Actor · aurii · delivered to record & GP

hashcf48…22e1preve6c0…7a9b

5 of 5 entries verified · chain unbroken · retained 7 years

Why a chain, not a log

An ordinary log can be edited after the fact and no one would know. A hash chain links each entry to the cryptographic fingerprint of the one before it. Change, reorder or delete an entry and every link after it breaks. So tampering isn't just noticed. You can prove it.

Append-only. Entries are added, never overwritten. The full history of a document stays intact.
Action and actor. Who did what, and when: drafting, edits, the review, the signature, the delivery.
You can check it yourself. Re-compute the chain and confirm it. That's a clean answer for an MDO, an insurer or an auditor.
Seven years. Kept in line with Australian clinical record-keeping expectations, in-region the whole time.

How it's protected, end to end.

Behind those four promises sit the day-to-day controls: who can see what, encryption at every step, and processing that stays in Australia.

You see only your own patients

Specialists see their own patients, and each role is limited to exactly what the work needs. There's no standing access and no broad admin reach over clinical content. Every grant is deliberate, and it's logged.

Encrypted in transit & at rest

Every connection is encrypted in transit. Sensitive clinical data is encrypted at rest record by record in Australian Key Vault: audio, notes, letters and backups.

Australian processing & storage

Audio is captured and transcribed inside the Australian region, and your records are stored and encrypted in Australia. The data we hold stays as local as the storage.

A doctor signs everything

aurii proposes; it never acts on its own. A clinical document is only final once a named specialist has reviewed and signed it. That signature is what the ledger records.

Append-only retention

The seven-year ledger is write-once. Records are never silently edited or purged. The history of every document is kept and chained.

Built for clinical trust

A private hospital needs in-region data, record-level encryption and a record it can verify from anything that touches patient data. For aurii that's the starting point, not an add-on.

Certifications & assurances.

What we hold, what we're built on, and what the law requires of us — set out plainly, and verifiable.

Ticking every compliance and safety box.

SMB1001:2026 GoldLevel 3 · Certified ISO/IEC 27001Compliant SOC 2 Type IICompliant ISO/IEC 42001AI management · compliant IRAP — PROTECTEDASD-assessed PCI DSS Level 1Compliant Australian Privacy PrinciplesCompliant

What we hold

SMB1001:2026 Gold (Level 3)

Held by Black Shard Pty Ltd, the company that builds, hosts and secures aurii. Certified by CyberCert.

View on Black Shard

What we're built on

Microsoft Azure — Australian regions

aurii is hosted on Microsoft Azure in Australian regions. Azure's infrastructure is IRAP-assessed to PROTECTED and holds ISO 27001 and SOC 2. These cover the underlying cloud platform; the security of our application and your data is our responsibility, set out across this page.

The drafting engine

The drafting itself runs on an enterprise AI provider. It drafts only from what you dictate; a named specialist reviews and signs every output and remains responsible for the clinical content.

What the law requires of us

Australian Privacy Principles

aurii is bound by the Australian Privacy Principles under the Privacy Act 1988, and handles health information as sensitive information — with clear collection notices, access and correction, and any cross-border disclosure set out plainly in our Privacy Policy.

The questions your IT team will ask.

The detail your governance, IT and medico-legal teams will want, answered plainly.

Where does our data live?

All your data lives in Australia. Audio, transcripts, the drafted records and their backups are hosted and encrypted here — primary in Sydney, backup in Melbourne — encrypted record by record in Australian Key Vault and isolated to your practice.

Who can read our data — can aurii?

Your data is encrypted record by record in Australian Key Vault and isolated to your practice. Ask us to purge it and it's destroyed for good, not just hidden. Access is limited to exactly what each role needs, and every access is recorded in the audit ledger.

What happens if we leave?

Ask us to purge your data and it's destroyed for good, not just hidden. We set up export and offboarding when you onboard. Your records are yours, and the ledger of what happened to them goes with you.

How do we prove a note wasn't altered?

Re-compute the hash chain for that document. If a single entry had been changed, reordered or removed, the chain would break. An unbroken chain is your proof the record is exactly as it was made.

Can aurii send anything in our name?

Never automatically. No note, letter, billing item or discharge is issued until a named specialist has reviewed and signed it. The signature, and who applied it, is written to the ledger.

Is aurii a medical device?

aurii is a documentation tool, not a diagnostic device. It drafts from what you say at the bedside; it does not diagnose, triage or make clinical decisions. The treating specialist reviews and signs every output and remains responsible for the clinical content. This mirrors the RACGP's guidance on AI scribes — the clinician always reviews and signs the note — and keeps aurii outside the TGA's definition of a regulated medical device.

How long is the audit kept?

Seven years, append-only, in-region the whole time, in line with Australian clinical record-keeping expectations. Older entries are never silently dropped from the chain.

Your security & governance teams want the full pack?

We'll walk your IT, governance and medico-legal teams through how it works and answer the detailed questions. Email hello@aurii.com.au or talk to the team.

Your data stays home.
See aurii on your ward.

Bring your security questions, the kind your governance and IT teams ask. We built aurii to answer them.

Start free trial Talk to the team

hello@aurii.com.au · SYD primary // MEL backup // always doctor-signed

Patient data thatlives in Australia.