Sold by: Kriv AI
End-to-end AI governance framework designed specifically for healthcare organizations that must comply with HIPAA, HITRUST, and emerging AI regulations. Kriv AI implements PHI protection layers, model governance controls, audit trails, access management, and compliance documentation across your AWS AI infrastructure. Covers Amazon Bedrock, SageMaker, and HealthLake deployments. 3-6 week fixed-scope engagement delivering a production-ready governance layer, not just documentation. Includes staff training and 30-day post-launch support.
Overview
HIPAA enforcement actions are up 340%. 67% of healthcare organizations are NOT ready for AI governance. And 80% of PHI breaches originate from vendor and third-party AI systems operating without proper controls.
If your organization is deploying AI on AWS -- whether through Amazon Bedrock, SageMaker, or custom models -- you need a governance framework built specifically for healthcare. Generic AI governance does not address PHI protection, clinical workflow requirements, or the intersection of HIPAA with emerging AI regulations like the EU AI Act and NIST AI RMF.
WHAT WE IMPLEMENT:
PHI Protection Layer: Automated detection and de-identification of Protected Health Information using Microsoft Presidio and custom NLP models. Prevents PHI from entering AI model training data or being exposed in AI outputs.
Model Governance Controls: Model inventory, version control, bias testing, performance monitoring, and approval workflows for every AI model in production. Full traceability from data input to model output.
Audit Trail System: Comprehensive, tamper-resistant logging of all AI decisions, data access, model changes, and human overrides. Designed for HIPAA audit readiness and regulatory inspections.
Access Management: Role-based access controls for AI systems aligned with your existing IAM structure. Minimum necessary access enforcement for PHI-adjacent AI systems.
Compliance Documentation Package: Complete set of policies, procedures, risk assessments, and evidence artifacts mapped to HIPAA Security Rule, HITRUST CSF, NIST AI RMF, and SOC 2 AI controls.
Staff Training: 4-hour governance training for technical and clinical teams covering AI-specific HIPAA obligations, incident reporting, and ongoing compliance responsibilities.
ENGAGEMENT STRUCTURE:
Weeks 1-2: Discovery, current-state assessment, risk identification, and architecture review. Weeks 3-4: Implementation of PHI protection, audit trails, access controls, and monitoring. Weeks 5-6: Testing, documentation, staff training, and executive review.
Timeline is 3-6 weeks depending on scope and number of AI systems in production.
WHO THIS IS FOR:
CIOs, CISOs, Chief Compliance Officers, and VP Clinical Informatics at hospitals, health systems, payer organizations, digital health companies, and healthcare technology vendors deploying AI on AWS.
ABOUT KRIV AI:
Kriv AI is the only AWS Marketplace partner specializing in HIPAA-compliant AI governance. We have trained a $2B enterprise healthcare organization on responsible AI implementation. AWS Partner. Databricks Partner.
For detailed methodology and case studies, visit https://kriv.ai
Highlights
- Production-ready HIPAA AI governance: PHI protection, audit trails, model governance, and access controls -- not just documentation
- Only AWS Marketplace listing combining AI governance with healthcare-specific HIPAA, HITRUST, and NIST AI RMF compliance
- Proven at scale: trained a $2B enterprise healthcare organization on governed AI adoption and implementation
Details
Sold by
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. To get a custom quote for your needs, request a private offer.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Support
Vendor support
RE-PURCHASE SUPPORT:
Before purchasing, customers can contact Kriv AI for:
- Scope assessment and custom engagement planning
- Architecture review to determine governance requirements
- Custom pricing via private offer based on number of AI systems
- References from healthcare organizations
Contact us:
- Email: info@kriv.ai
- Phone: +1-732-433-5564
- Website: https://kriv.ai/contact
Response time: All inquiries answered within 1 business day.
POST-PURCHASE SUPPORT:
After purchase, customers receive:
- Dedicated engagement lead assigned within 24 hours
- Kickoff call within 3 business days of purchase
- Weekly status updates and progress reports
- All deliverables in editable format
- 30-day post-launch support for governance framework questions and adjustments
- Priority email and phone support (9 AM - 6 PM ET, Monday-Friday)
- Incident escalation to CEO within 24 hours for critical issues
ONGOING SUPPORT OPTIONS: After the initial engagement, customers can purchase ongoing AI Governance-as-a-Service (GaaS) for continuous monitoring, policy updates, and quarterly compliance reviews.
REFUND POLICY: Full refund available before kickoff call. After kickoff, partial refunds based on work completed.
Software associated with this service
PointGuard AI's integration with AWS AI (Bedrock, SageMaker) significantly enhances the security and governance of AI applications built on AWS AI (Bedrock, SageMaker). PointGuard AI's solutions provide guardrails and policy enforcement across the entire AI lifecycle, from data ingestion to model deployment. By combining AWS AI's powerful data processing capabilities with PointGuard AI's robust security measures, organizations can accelerate their AI initiatives while maintaining a strong security posture, ensuring that sensitive data and AI models are protected from evolving threats.