The Sentry Compliance Standard
A comprehensive technical and legal framework designed specifically for the Texas healthcare ecosystem. We navigate the complexities of SB 1188 and HB 149 so you can focus on patient care.
Texas Legislative Mandates
Data Sovereignty & Residency Requirements
All PHI (Protected Health Information) must reside on servers physically located within US domestic boundaries. Offshore cloud storage and CDN edge caching outside the US are prohibited.
Content Delivery Networks must be configured to serve Texas patients exclusively from US-based edge nodes. European or Asian cache propagation triggers non-compliance.
Email infrastructure (MX records) routing patient communications through foreign mail servers constitutes a violation.
Third-party service providers (payment processors, analytics, chatbots) must demonstrate US-only data residency.
Per violation for offshore data storage of PHI
AI Transparency & Disclosure Requirements
Any AI-powered tools (chatbots, scheduling assistants, symptom checkers) must display clear, prominent disclosure text in at least 14px font. "Fine print" disclaimers do not satisfy the legal standard.
UI techniques that obscure AI disclosures (low opacity, hidden z-index layers, micro-fonts) are explicitly prohibited and trigger penalties.
AI tools providing medical advice or diagnosis must include explicit disclaimers stating that final decisions require licensed practitioner review.
AI chatbots must disclose their non-human nature at the start of every patient interaction.
Per violation for undisclosed or deceptive AI implementations
Enforcement Timeline
SB 1188 and HB 149 signed into Texas law. Grace period begins.
Active enforcement period begins. Penalties now apply for non-compliance.
Texas Attorney General begins systematic compliance audits of healthcare providers.