Trust Center

AI handling

Last reviewed: 2026-05-25

Compliance Care uses Anthropic's Claude models for a small number of narrowly-scoped tasks. This page describes what AI is used for, what data is sent, how the model and version are pinned, how a human stays in the loop, and how every call is logged for audit.

Where AI is used

CapabilityModelWhat it does
Document triageClaude Haiku 3.5First-pass classification of an uploaded document (e.g., "this looks like an incident report dated 2026-04-12"). Cheap, fast, used for routing only.
Evidence mappingClaude SonnetGiven a document and a Practice Standard clause, drafts a candidate mapping with a confidence score. Output is always a draft for human review.
Policy drafting assistantClaude SonnetGiven a clause and the provider's existing policy register, drafts candidate clause text. Output is always a draft for human review.
Hard cases (rare)Claude OpusSelectively used where Sonnet output is rejected or low-confidence. Off by default; turned on per-tenant only when justified.

What is sent and what is not

For each call we send only what the task requires:

We do not send:

Where the task does not need a name, identifier, or other PII, it is removed or replaced before the call.

Prompt caching

The NDIS Practice Standards corpus is large and changes rarely. We use Anthropic's prompt-cache feature to cache that corpus, so each evidence-mapping call sends only the differing document — not the standards. This is both a cost discipline (the cached portion is billed at a lower rate) and a privacy discipline (the document is the smallest portion of the request).

Batch API

Large overnight evidence-mapping runs use Anthropic's Batch API. Batch jobs are scheduled by the customer ("Run mapping") and are visible in the customer's run history. There is no background batch processing of customer data without an explicit run instruction.

Credit metering

Every AI feature is gated behind a per-tenant credit meter. The customer sees the credit cost of a run before they confirm it. Runs that would exceed the budget require explicit confirmation. There is no path by which AI usage silently accumulates against the customer's account.

Version pinning

Human in the loop

Audit log

For every AI call, the following are written to the append-only audit_events table (mirrored nightly to S3 Sydney with Object Lock, 7-year retention):

Customers can export this log at any time from "Audit Export."

Anthropic data handling

What AI is not used for

Change log

DateChange
2026-05-25Initial publication.

← Back to the Trust Center