Security & privacy

We prioritize patient privacy and security

BrainBaseline is GCP compliant: our architecture, infrastructure, and processes are designed to support FDA registration studies.

We are compliant with the data security requirements of HIPAA and 21 CFR Part 11.

Physical safeguards through Amazon Web Services and guranteed by a BAA.

Personally Identifiable Information (PII) is logically separated from data.

User authentication with robust security protections required throughout platform.

Protected Health Information (PHI) is encrypted at rest and in transit.

Takes advantage of security protocols built in the iOS platform.

Segregated data tables for FDA compliance.