Compliance

Enterprise-grade security.
Racing-industry compliance.

Your horse data is sensitive — health records, financial data, breeding strategies, sale prep. EquiJoT protects it all with SOC 2, HISA compliance, and full audit trails.

🔒 SSO & Access Control

SAML/OIDC via WorkOS. Role-based permissions — vets see health, owners see financials, grooms see daily tasks.

📋 HISA Compliance

Medication tracking, out-of-competition testing records, and audit trails that satisfy HISA and state racing commission requirements.

🔐 SOC 2 AI

EquiBot runs on AWS Bedrock. Your data stays in your VPC. No training on your data. Every AI call logged.

📊 Audit Trail

Append-only log of every access, change, and external share. 7-year retention. Nobody can delete the record.

🌐 External Access Logs

Know exactly which vet, agent, or insurer accessed what, when, and what they downloaded. Watermarked exports.

🛡️ Data Sovereignty

Choose your AWS region. All processing stays there. Meets international requirements for global racing operations.

Audit Trail Log

1,247
Actions Today
23
Active Users
0
Security Alerts

Recent Access Activity

Time User Action Resource Source IP Status
15:42:33 Dr. Sarah Chen viewed_record Thunder Ridge medical history 192.168.1.45 OK
15:38:17 Bill Mott updated_training_log Thunder Ridge breeze time 10.0.1.23 OK
15:33:52 Sheikh Mohammed exported_report Portfolio performance Q1 203.142.85.12 OK
15:29:14 Maria Santos created_inspection Golden Sunrise daily check 192.168.1.67 OK
15:24:08 HISA Inspector requested_compliance Keeneland stable records 65.198.224.87 REVIEW
15:19:43 J. Castellano viewed_race_entry Thunder Ridge R5 equipment 192.168.2.134 OK
15:16:29 EquiBot AI analyzed_query "Breeding schedule analysis" internal OK
Security Highlights

• All connections encrypted via TLS 1.3

• IP addresses logged for forensic audit

• Failed login attempts: 0 (last 24h)

• Database queries: 100% logged

• Backup verification: Daily ✓

Compliance Status

• SOC 2 Type II: Current (expires Dec 2026)

• HISA requirements: ✓ Compliant

• Data retention: 7 years configured

• EU GDPR: Ready for international ops

• Penetration test: Last run Feb 2026

See also: Partners → | Integrations → | Collaboration →

Permission Matrix

Role-Based Access Control

Data Type Owner Trainer Veterinarian Groom Jockey External
Horse Records Full Read/Write Read/Write Read Read Custom
Medical Records Read Read Full None None None
Financial Data Full Read None None None None
Training Logs Read Full Read Read/Write Read None
Race Entries Full Full Read Read Read/Write Custom
HISA Reports Read Read/Write Read/Write None None Full
Permission levels: Full (Read/Write/Delete) | Read/Write | Read Only | Custom Rules | No Access
See also: Partners → | Collaboration → | Integrations →

HISA Compliance Dashboard

100%
Medication Compliance
847
Logged Treatments
23
OOC Tests (90d)
0
Violations

Recent HISA Reports Submitted

Date Report Type Location Details Status
Mar 25 OOC Test Results Keeneland Training Center Thunder Ridge, Golden Sunrise (5 horses total) Submitted
Mar 22 Medication Report Churchill Downs Race day declarations (8 horses) Approved
Mar 18 Injury Report Turfway Park Desert Wind - minor tendon strain Submitted
Mar 15 Monthly Summary All Locations February 2026 compliance report Approved
Upcoming Deadlines
Monthly report (March) Due Apr 5
OOC testing window Apr 10-16
Annual audit preparation Jun 2026
See also: Partners → | Veterinary → | Racing Operations →