Skip to content
FonteumThe Graph

The capability layer

APIREST + bulk accessMCP serverCallable by AI agentsFHIR R4 APIBulk exportAttestation & audit packReconciliationSource-vs-source diffsEntity graphSnapshotsPoint-in-time, bitemporal

By use case

Exclusion & sanctions screeningCredentialing & provider-data enrichmentAudit evidence & defensible programsProvider data for AI / RAGM&A & network diligence

By buyer

Compliance & riskDevelopers & AI teams

The differentiator

Coverage & sourcesThe catalogFreshnessMethodologyCare CompareFacility qualityBrowse all datasets →
Research

The dev on-ramp

DocsAPI referenceMCPQuickstartStatusChangelogSDKs & integrations
Pricing
Sign inTry the FHIR sandbox →Request access →

Platform

APIMCP serverFHIR R4 APIBulk exportAttestation & audit packReconciliationEntity graphSnapshots

Solutions

Exclusion & sanctions screeningCredentialing & provider-data enrichmentAudit evidence & defensible programsProvider data for AI / RAGM&A & network diligenceCompliance & riskDevelopers & AI teams

Data

Coverage & sourcesFreshnessMethodologyCare CompareBrowse all datasets →
Research

Developers

DocsAPI referenceMCPQuickstartStatusChangelogSDKs & integrations
Pricing
Sign inTry the FHIR sandbox →Request access →

OPERATING STANCE

federal-only sourcing

No enrichment. No interpretation.

Fonteum aggregates federal data and routes it. We do not enrich, model, or score. 44 federal source families · Row-level provenance on every record. Fonteum does not currently hold SOC 2.

Read the audit pack →

What Fonteum is · What Fonteum is not

Federal data, passed through without enrichment.

Fonteum is
Fonteum is not
A federal data aggregator. 44 federal source families.
A data enrichment vendor.
Row-level provenance on every record.
A trust-score or rating provider.
A pass-through of what federal agencies publish.
An independent verifier of provider credentials.
A pipeline with published methodology versioning.
A claims processor or clearinghouse.
Honest about what we do and do not hold.
An aggregator of commercial, EHR, or Rx data.

What Fonteum does not do

No enrichment. No scoring. No inference.

—Enrich or score provider records beyond what federal sources publish.
—Infer demographics, market segments, or clinical outcomes.
—Aggregate commercial claims data, EHR data, or Rx transactions.
—Source from consumer demographics lists or marketing databases.
—Republish data from restricted-distribution registries.
—Assert credentials not traceable to a named federal public source.

Data not ingested

Explicit rejection list.

Commercial medical claims (clearinghouse or insurer-derived)
Electronic health record extracts of any kind
Prescription transaction data
Consumer demographic or behavioral datasets
Marketing list aggregators
Scraped third-party directory data
State medical board membership rosters
NMLS Consumer Access records
ABMS / CertiFacts certification records

Security posture

No certifications we don't hold.

Fonteum is not SOC 2 attested and does not currently hold a SOC 2 (Type 1 or Type 2), HIPAA, or ISO 27001 attestation, and displays no badge it does not hold. The hosting and data tiers run on SOC 2 Type 2 attested infrastructure (Vercel, Supabase). For procurement requiring a specific attestation, contact security@fonteum.com.

See pricing →

Infrastructure: Vercel (application hosting) + Supabase (managed Postgres, row-level security enforced). Encryption in transit (TLS 1.2+) and at rest. No service-role keys shipped to the browser.

HITRUST i1 evaluation planned for 2027 — i1 (Implemented, 1-year) is the appropriate scope for a no-PHI public-data platform. HIPAA covered-entity status is not applicable — Fonteum processes no PHI.

Vulnerability disclosure: security@fonteum.com · /.well-known/security.txt (RFC 9116).

BAA availability

BAA template on request.

Because Fonteum processes no PHI, BAA execution is typically not required under HIPAA for data ingestion. The template exists as a procurement formality for partners whose internal compliance review requires a signed BAA regardless of processing scope.

Download audit pack (includes BAA template) →

Customer evidence

Pilot intake open.

Fonteum does not currently hold SOC 2. Customer evidence published as pilots close. No fake logos, no anonymous testimonials.

Incident disclosure policy

72-hour incident disclosure. Public corrections log.

If a confirmed unauthorized access to user data is discovered, Fonteum notifies affected parties within 72 hours of confirmation and posts a public statement naming the scope of access, the affected data classes, the time window, and the remediation steps taken.

Data-quality incidents (a wrong figure on a live page) follow the same corrections workflow and are logged below alongside doctrinal corrections. Fonteum has not had a breach to date. The policy exists so the threshold is documented.

Corrections log · last 30 days

Federal-source corrections and re-sync timestamps.

Last 30 days · 5 entries · static snapshot — live feed in Q3 2026

  1. 2026-05-25

    Accepted

    CMS Care Compare · Dataset sync

    Home health agency count reconciled with upstream CMS quarterly release. 12,392 CCN-keyed records confirmed.

  2. 2026-05-24

    Accepted

    CMS Provider of Services · Schema update

    POS facility type field mapping updated to align with CMS April 2026 release schema.

  3. 2026-05-20

    Accepted

    HHS-OIG · Record count update

    Monthly LEIE refresh completed. 68,055 exclusion records confirmed current.

  4. 2026-05-15

    Accepted

    CMS Care Compare · Hospice data refresh

    Q1 2026 Care Compare Hospice refresh completed. 6,943 facility records updated.

  5. 2026-05-10

    Accepted

    CMS QPP · Score recalculation

    PY2023 individual clinician scores updated following CMS correction bulletin.

Download audit pack →Request access →Read the methodology →

Built on the authoritative federal record

The primary sources, named on every page.

These are the federal agencies whose public datasets Fonteum ingests and attributes — the issuing authorities, not customers or partners. Every figure on the site links back to one of them.

  • CMS
  • HHS-OIG
  • HRSA
  • FDA
  • NLM
  • NUCC
  • Census
  • BLS
  • BEA

See the full source registry, with license and refresh cadence for each →

Reproducible by design

Every figure traces to its federal source.

14-tuple provenance

Every rendered fact ties to a source URL, dataset ID, snapshot date, row key, and SHA-256 — the full chain-of-custody record.

Reproducible SQL

Each study ships the exact query behind its figures, run against the cited federal snapshot. Re-run it yourself.

Daily reconciliation

Published counts are reconciled against the upstream federal datasets on a daily cadence, with drift logged.

Named medical review

Reviewed by Jennifer Montecillo, MD, medical reviewer. Non-practicing medical reviewer.

Read the full provenance and attestation methodology →

Two doors

Use the free API and open data

Query providers, facilities, sanctions, and quality scores — each field carrying its federal source. Self-serve, no call to start.

Explore the API →Browse the data catalog →

Talk to us

Managed pilots, enterprise terms, and audit-ready, signed attestation packages for compliance, risk, and research teams.

Talk to us →
Fonteum
Platform
Platform overviewAPIMCP serverFHIR R4 APIBulk exportAttestation & audit packReconciliationEntity graphSnapshots
Solutions
All solutionsExclusion & sanctions screeningCredentialing & enrichmentAudit evidenceProvider data for AI / RAGM&A & network diligenceCompliance & riskDevelopers & AI teams
Data & sources
Coverage & sourcesBrowse all datasetsState Medicaid exclusionsFreshnessMethodologyCare CompareSanctionsOwnershipStaffingDeficienciesSpecial Focus Facilities
Developers
Developer hubDocsAPI referenceQuickstartStatusChangelogSDKs & integrationsWebhooks
Research
Research hubHospital margin gapProvider access gapsGlossaryComparisonsCitationsWhy Fonteum
Company
AboutPressCustomersPricingContactEditorial policyCorrections
Trust & legal
TrustQualitySecurityPrivacy policyTerms of serviceMedical disclaimer

Reviewed by Jennifer Montecillo, MD, medical reviewer. Non-practicing medical reviewer.

© 2026 Fonteum LLC. All rights reserved.

·hello@fonteum.com

The U.S. healthcare graph AI can cite — every fact carries its source.

Request access→

The substrate, by the numbers

9.2Mgraph entitiesProviders, organizations, owners, and facilities
15.7Mlinked identifiersNPIs, CCNs, LEIs and more, resolved to entities
5Mgraph edgesSource-attested relationships between entities
44federal source familiesDistinct CMS, OIG, HRSA, FDA and peer datasets
35dataset pagesCitable, downloadable /data catalog pages
65reproducible studiesEach shipping the SQL behind its figures