Our regulatory and security posture, plainly stated.
For institutional procurement, compliance teams and CISO review. PHB is NDPC-licensed, professionally verified, with an append-only audit trail and data sovereignty built in at the architecture level.
Request compliance pack →Five pillars, fully documented.
Licensed by the Nigeria Data Protection Commission (NDPC) under the NDPA 2023. A registered Data Protection Officer is appointed. DPA available on request.
All clinicians are verified against MDCN, pharmacies against PCN, and laboratories against MLSCN before being admitted to PHB Connect. Credentials are re-verified periodically.
The audit log is append-only and Merkle-hashed — entries cannot be edited or deleted without detection. Retained for 7 years per NDPA requirements. Exportable on request.
All health data is stored within Nigeria. A Sovereignty Gateway enforces this at the network layer — egress is border-locked and logged. Primary in Lagos, hot mirror in Abuja.
Clinical coding follows ICD-11 for diagnoses, SNOMED CT for procedures and concepts, LOINC for lab observations and RxNorm for medications. Data exchange uses HL7 FHIR R4.
No invented standards.
Request our compliance pack.
For procurement and CISO review: includes NDPC licence certificate, DPA, security overview, audit log sample and professional council verification summary.
Email compliance@phbhealth.com →