Private by design

No personally identifiable information is required.

Data processing privacy and hosting

How we process data, where and why

Perhaps the most important aspect of our solutions is that they do not require personally identifiable information.

We can deliver 100% of our promised functionality and workload optimisations without knowing anything truly personal about your patient.

To our API your patient is just a temporary number, unique to that session.

What about artificial intelligence?

As a part of our continuous improvement efforts, we collect reports to identify patterns and relationships using AI machine learning.

Identifying these patterns will allow us to develop the next version that can generate extended questionnaires just as a seasoned expert would do - based on the previous answers given by the patient.

When training algorithms in artificial intelligence it is enough just to refer to individuals as unique numbers.

Hosting by AWS

All of our solutions are hosted in a scalable cloud environment at AWS.

There are two locations we are currently using, EU and U.S.A. By default, we store European data in the EU data center and vice versa.

AWS Cloud Compliance enables you to understand the robust controls in place at AWS to maintain security and data protection in the cloud. As systems are built on top of AWS Cloud infrastructure, compliance responsibilities will be shared.

By tying together governance-focused, audit-friendly service features with applicable compliance or audit standards, AWS Compliance enablers build on traditional programs. This helps customers to establish and operate in an AWS security control environment.

The IT infrastructure that AWS provides to its customers is designed and managed in alignment with best security practices and a variety of IT security standards. The following is a partial list of assurance programs with which AWS complies:

  • SOC 1/ISAE 3402, SOC 2, SOC 3
  • PCI DSS Level 1
  • ISO 9001, ISO 27001, ISO 27017, ISO 27018
More info?

AWS provides a wide range of information on its IT control environment in whitepapers, reports, certifications, accreditations, and other third-party attestations. More information is available in the Risk and Compliance whitepaper and the AWS Security Center.