Build on the HIPAA-compliant agent.
A REST API with FHIR and HL7 support, real-time webhooks, and connectors to the EHRs and CRMs you already use — wrapped in encryption, audit logging, and a signed BAA.
REST API
Clean, predictable JSON endpoints for messaging, scheduling, patients, and documents — with examples to get going fast.
FHIR & HL7
Standards-based interoperability so Phiclaw reads and writes to your EHR the way healthcare data is meant to move.
Webhooks
Subscribe to real-time events — new messages, bookings, intake submissions — and react in your own systems instantly.
HIPAA & BAA
Encryption in transit and at rest, audit logging, PHI minimization, and a signed BAA before any protected data flows.
Keys & OAuth
Scoped API keys and OAuth for partner apps, with granular permissions and easy rotation.
Reliable & observable
Sensible rate limits, idempotency, and status visibility so integrations stay predictable in production.
A request looks like this.
Authenticate with a scoped key, call a resource, get JSON back. Full reference and client examples are shared when you're granted access.
# Send a message on behalf of a practice curl https://api.phiclaw.ai/v1/messages \ -H "Authorization: Bearer $PHICLAW_API_KEY" \ -H "Content-Type: application/json" \ -d '{ "patient_id": "pat_8fk2", "channel": "sms", "body": "Your visit summary is ready." }'