Security & Privacy
At Segmed, our philosophy is that patient privacy and data security come first.
Patient Privacy
We apply our de-identification process while our data is being transferred to our servers. This means that no PHI should ever land in our servers.
Automatic PHI Removal
We use a combination of traditional and machine learning methods to remove PHI from DICOM headers and reports.
Manual Inspections
We routinely take random samples of data to check for proper de-identification.
HIPAA Compliance
Our platform follows HIPAA standards, and all team members participate in HIPAA training.
Security Infrastructure
We want to embed security practices in all parts of our company. As part of our security measures, we have obtained our SOC 2 attestation and are working towards our ISO 27001 certification.
Secure by Design
We use cybersecurity scanners and detection systems to embed security in the platform as we build it, exceeding industry standards for security.
Data Storage
Segmed uses Amazon Web Services (AWS), the most secure global infrastructure monitored by world-class security experts, so you can feel confident in every stage in the process.
Minimized Exposure
We automate as much of our data pipeline as possible to reduce the number of people interacting with sensitive data.
Take a look at our white papers to learn more about our data de-identification workflow and procedures.
You can also learn more about how we're maintaining compliance and request access to our SOC 2 report through our Vanta page.
You can also learn more about how we're maintaining compliance and request access to our SOC 2 report through our Vanta page.
Accelerate your development pipeline.
Curate your training/validation datasets on Segmed Insight.
.svg)
© All rights reserved.
