Glossary
Cavaridge’s security-posture suite. Sells as “Cavaridge Security.”
BAA (Business Associate Agreement)
Section titled “BAA (Business Associate Agreement)”HIPAA contract permitting PHI handling. Cavaridge has a standard BAA in place.
Canonical event
Section titled “Canonical event”One of the 5 platform-level Pulse events: signup, first_meaningful_action, daily_active, paid_conversion, churn_signal.
Catalog
Section titled “Catalog”Stripe products / tiers / prices / customer-portal / webhook-events config. Lives in @cavaridge/billing-catalog.
Cavaridge AI
Section titled “Cavaridge AI”The user-facing AI workspace product (Cavaridge Build / Studio). Internally a flagship surface plus the Cavaridge AI gateway.
Cavaridge AI gateway
Section titled “Cavaridge AI gateway”The internal LLM router. All LLM calls flow through it. Per-tenant spend caps + provider failover.
Connect
Section titled “Connect”Cavaridge’s Stripe Connect platform — MSPs reselling to clients. Default 15% platform fee.
Covered Entity
Section titled “Covered Entity”HIPAA term for a healthcare provider, plan, or clearinghouse.
The user-facing AI personality. Female Blenheim Cavalier King Charles Spaniel, she/her.
First meaningful action
Section titled “First meaningful action”Canonical Pulse event a user fires when they complete the first product-defining action.
HIPAA-eligible model provider
Section titled “HIPAA-eligible model provider”A model provider with whom Cavaridge has an active BAA.
Knights
Section titled “Knights”Cavaridge’s adversarial security validation product (Red + Blue + Purple).
MIS (Model Intelligence System)
Section titled “MIS (Model Intelligence System)”Inside the Cavaridge AI gateway. Benchmarks 300+ OpenRouter models per task class.
MCP (Model Context Protocol)
Section titled “MCP (Model Context Protocol)”Anthropic’s protocol for AI clients to call external tools. Cavaridge ships PROD-07 to expose product tools as MCP servers.
Managed Service Provider. Primary B2B customer profile.
Nurse Tools
Section titled “Nurse Tools”Free, public, no-auth clinical utilities at nursetools.cavaridge.app. Internal codename CERES.
OpenRouter
Section titled “OpenRouter”Third-party LLM routing fabric Cavaridge sits on top of.
Protected Health Information per HIPAA.
The platform-wide activity stream. See /platform/pulse/.
Role-Based Access Control. 10 roles, three enforcement layers.
Row-Level Security. Postgres feature for tenant isolation.
Service token
Section titled “Service token”The per-app credential apps use to call the Cavaridge AI gateway.
SoW (Statement of Work)
Section titled “SoW (Statement of Work)”A scope-of-work document. Cavaridge’s Caelum engine generates them.
Spend cap
Section titled “Spend cap”The per-tenant LLM spend ceiling enforced by the gateway.
Status page
Section titled “Status page”status.cavaridge.app. Public uptime + incident timeline.
Sub-processor
Section titled “Sub-processor”A third-party that processes data on behalf of Cavaridge.
Tenant
Section titled “Tenant”Unit of isolation. 6 types in the UTM.
Tenant guard
Section titled “Tenant guard”Middleware that enforces tenant scope on every API request.
TTFV (Time-to-first-value)
Section titled “TTFV (Time-to-first-value)”Seconds from trial_started to trial_first_action_completed.
UTM (Universal Tenant Model)
Section titled “UTM (Universal Tenant Model)”Cavaridge’s 6-tenant-type tenancy primitive.
VDP (Vulnerability Disclosure Program)
Section titled “VDP (Vulnerability Disclosure Program)”Public security-research path.