Rōvn.
For workers For facilities
Trust & compliance·nothing is a black box

Every claim carries a tier, a receipt, and a human at the end.

Trust is not a promise here, it is a mechanism. A claim climbs four rungs, locks a hash-chained receipt only when a primary source confirms it, and is decided only by a person. This page shows the whole machine. This is how the operating network for the healthcare workforce earns the word verified — verify a clinician once, reuse everywhere.

AI operates the workflow. Source systems prove the facts. Humans make every regulated decision.

The truth ladder

Four rungs. It only locks when a source says so.

Attestedworker typed it

The worker enters a claim. Useful context, but unproven. Lowest tier.

ProcessedAI extracted fields

An AI worker reads the document and structures the fields. Still not proof.

Verifiedprimary source matched

When a primary source returns a match, a receipt locks here, hash-chained and replayable.

receipt locked
Approveda human decides

A person at the facility makes the credentialing call. The AI never decides.

Receipt Verified · locked
sourceNursys e-Notify
source urlnursys.com/verify/sample
resultlicense active · no action
methodprimary-source API · illustrative
timestamp2026-06-05 · 14:22:07 UTC
hash0x9f3c·a1be·77d0·4e2a
prev hash0x41a0·be12·c9f4·0d88
depth tierverified · primary source
valid through2027-04-30 · then re-check
Illustrative receipt · hash-chained · 7-year retention · replayable on demand

Every claim here runs on a synthetic corpus, 43 roles across 51 jurisdictions against 36 primary sources. No real roster has run through the network yet; we are pre-launch by design.

The audit

A tamper-evident chain, not a screenshot in a folder.

Each receipt references the hash of the one before it. Alter any record and the chain breaks visibly. The full history is retained and replayable, so a surveyor can re-walk exactly what was checked and when.

Hash-chained
Every receipt carries its own hash and the previous receipt's hash. The chain is tamper-evident end to end.
Replayable for survey
7-year retention. Re-walk any credential's full verification history on demand, with timestamps and sources intact.
Four human gates

AI operates the workflow. A person opens every gate.

There are four decisions Rōvn will never make. Each one is reserved for a human at the facility, by design. Each gate requires a typed reason on accept, surfaces dissenting evidence, and varies friction by stakes — a gate clicked without reading is not a control.

01
Credential
Whether a verified file meets the standard to be credentialed is a committee decision, not a model output.
Credentialing committee
02
Privilege
Granting clinical privileges for specific procedures stays with the medical staff office and its reviewers.
Medical staff office
03
Hire
The decision to hire a worker is the facility's. Rōvn is the verification layer, never the employer or agency.
Hiring manager
04
Deploy / shift assignment
Assigning a cleared worker to a specific shift or unit is the facility's staffing decision. Rōvn never places, schedules, or deploys.
Staffing lead
The firewall

A verified record is history. It is never a score.

Rōvn holds what a primary source confirmed and what a worker consented to share. It is not a rating, a reliability index, or a reputation rank a facility can sort workers by. This is a legal line grounded in FCRA and EEOC guidance, and we built the product so it cannot be crossed.

What it is
Verified, consented, auditable history. Owned by the worker, portable, free.
What it is not
A worker rating, a reliability score, or a reputation rank. No opinions live here.
Compliance posture

Where we actually are. Stated as in-progress where it is.

We say HIPAA-aligned, not HIPAA-compliant, because alignment is a posture we hold and compliance is a claim we will not overstate.

Available
HIPAA-aligned
Designed to align with HIPAA requirements for PHI handling on the platform. A Business Associate Agreement is available to partners. Request the BAA and security packet at trust@rovn.to.
In progress
SOC 2 Type I
In progress with Drata. We will share the report with partners once the audit completes.
In progress
NCQA CVO alignment
Aligning to NCQA credentials verification organization standards, including their move toward continuous monitoring.
Trust as a mechanism

See the machine run on your rules.

Start with Readiness at $2,500 a month, or explore the verification surface for developers.

Facilities · demand
Start with Readiness
$2,500 a month. Your roles, your rules, source-verified readiness.
See pricing
Developers
The receipt object
Read-only verification access with cached, replayable receipts.
Verified API