Article
Public briefing for hospital IT
A concise public briefing for hospital IT teams to review Sono Ai Report, its security evidence, and the appropriate web-filter classification.
Purpose of this briefing
This page provides a safe public summary of the information a hospital IT team may need when reviewing access to Sono Ai Report. It complements the full technical access page and the institutional PDF without publishing private reports, tickets, screenshots with personal accounts, or internal scanner details.
The goal is to support correct classification, documented allowlisting, or reputation review when a corporate filter blocks the domain because of a generic category, newly observed reputation, or conservative policy.
Identity and purpose
- Official domain: https://sonoaireport.com
- Responsible company: AGARUS SERVICOS E SOLUCOES EM MEDICINA LTDA
- Brazilian tax ID (CNPJ): 24.740.646/0001-73
- Purpose: assistive medical platform for report documentation, review, and export
- Clinical responsibility: the physician user reviews, corrects, and signs the final report
- Security contact: security@sonoaireport.com
Public evidence summary
- SSL Labs: A+ rating for TLS/HTTPS
- SecurityHeaders: A rating with HSTS, CSP, X-Frame-Options, and X-Content-Type-Options
- Snyk/Probely: domain ownership verified and scan completed with no Critical, High, or Medium findings
- Google Safe Browsing: no malicious flag in the collected evidence
- Palo Alto URL Filtering: Health-and-Medicine and Low-Risk in the collected review
- Cisco Talos: Health and Medicine, Neutral reputation, and not blocklisted in the collected review
- SPF, DKIM, and DMARC are published; DMARC is in monitoring mode
- security.txt, humans.txt, sitemap.xml, robots.txt, and trust manifest are published
Interpretation for corporate filters
If a hospital network blocks access, the most likely cause is web-filter category or reputation policy, such as newly observed domain status, generic technology classification, or conservative institutional rules. The public evidence does not point to a certificate, TLS, phishing, malware, or proxy problem.
- Appropriate categories: Health and Medicine, Healthcare, Health and Wellness, Business, Education, Web-based Application, or Software as a Service
- Inappropriate categories: proxy, VPN, filter evasion, phishing, malware, gambling, adult content, streaming, or generic file sharing
- Practical recommendation: temporarily allowlist sonoaireport.com and www.sonoaireport.com while third-party reputation databases update
Allowlist scope
- Minimum public scope: https://sonoaireport.com
- Minimum public scope: https://www.sonoaireport.com
- For full authenticated app use: review the Google/Firebase endpoints listed in the institutional PDF
- Access approval should follow the institution policy and may be recorded as a documented exception
Published limits
Sono Ai Report is not an autonomous diagnostic system and does not replace the medical record, RIS, PACS, physician signature, human review, or institutional security policy. The product supports documentation and review; the final decision and signature remain the responsibility of the professional user.
Official links
Need to contact the Sono Ai Report team?
support@sonoaireport.comThis page summarizes operational practices in plain language. It does not replace legal advice, an agreement with your institution or internal medical-record policy.