Every audit log row at Conceptual Health is HMAC-signed and chained to the row before it. This page proves, right now, that the chain is intact — no authentication required.
The chain check pulls the most recent 200 rows
from the audit_log table and walks them in order. For each
row, it re-computes the HMAC of the row's contents (under that row's hash_algo — SHA-256 or SHA3-512) using the
previous row's signature as part of the input. If any single row
was tampered with after writing, the chain would break and the
check would fail loudly with the offending sequence number.
Conceptual Health stamps every officer action, every patient signature, every PHI access into this chain. The chain is the substrate underneath our SOC 2, HIPAA, and HITECH posture. Public re-verifiability means we cannot quietly rewrite the past — and we don't want to.
From any terminal:
curl -s https://www.conceptualhealth.com/api/v1/proof/verify-chain?n=200 | jq .