As a an API specifically tailored for use with medical records and patient data, Slingshot prioritizes security and data privacy, employing rigorous standards to safeguard sensitive health information and maintain compliance with medical data protection regulations.
Slingshot has received its SOC 2 Type 2 certification in partnership with Prescient Assurance. For Slingshot’s specific report please contact sales@slingshotbills.com.
Authenication is handled via API keys. API keys are generated on a per organization basis and can be revoked at any time. API keys are passed in the Authorization: Bearer SLINGSHOT_KEY
header of all requests. Slingshot can also support firewalls and IP whitelisting as an additional layer of security.
If you have found a security issue please email security@slingshotbills.com. We will respond as soon as possible and work with you to resolve the issue quickly.