Your Trust is everything to us.

Why put your clinical notes and outcomes into a system that you cannot explain to your patients how their data is being stored and what its being used for?

We have solved this industry wide problem by implementing best in class standards of managing and reporting on your data. Our mission to deliver radical transparency in healthcare starts with data protection and compliance at its core.

image

FDA 21 CFR Part 11 compliant

FDA 21 CFR Part 11 compliance dictates that those companies who use electronic systems for document and signature control must provide assurance that the electronic documents are authentic.

image

NHS Digital Commercial Third-Party Information Governance Requirements

These are a set of requirements for third party cloud providers that have access to united kingdom (UK) health service (NHS) healthcare data.

image

GDPR

All data collected will remain confidential and will be stored in compliance with General Data Protection Regulation (GDPR, 25th May 2018). We are committed to complying with the EU General Data Protection Regulation (GDPR) alongside Google Cloud Platform services.

image

ISO 27001

The ISO/IEC 27000 family of standards helps organisations keep information assets secure. ISO/IEC 27001 is a security standard that outlines and provides the requirements for an information security management system (ISMS). It specifies a set of best practices and details a list of security controls concerning the management of information risks.

image

HIPAA

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a federal law that established data privacy and security requirements for certain entities and individuals aimed at safeguarding individuals’ health information.

image

SOC 2

SOC 2 is a report based on AICPA’s existing Trust Services principles and criteria. The purpose of the SOC 2 report is to evaluate an organisation’s information systems relevant to security, availability, processing integrity, and confidentiality or privacy. With Google Cloud as our cloud partner, we undergo a regular third-party audit to certify individual products against this standard.

image

HITRUST CSF®

The HITRUST CSF is a certifiable framework for all industries which contains a set of prescriptive controls that relate to the organisational processes and technical controls for processing, storing, and transmitting sensitive data.

image

ISO 27017

The ISO/IEC 27017:2015 gives guidelines for information security controls applicable to the provision and use of cloud services by providing additional implementation guidance for relevant controls specified in ISO/IEC 27002 as well as additional controls with implementation guidance that specifically relate to cloud services

The latest on data-driven healthcare straight to your inbox

Would you like to be kept up to date with the latest industry news as well as WeCudos updates and case studies? Enter your email below to sign up to our newsletter.