Security and trust.
Security is a primary product concern at BodyMaps — every dataset we ship is governed by sourcing agreements, de-identification, and access controls. The detailed posture below is available on request.
In progress — available on request
We share our full security overview, sub-processor list, and current certifications-in-progress under NDA with active partners and prospective customers. Please reach out for the latest version.
In-house de-identification across DICOM headers, pixel data, and free-text reports — applied before any data leaves a partner environment.
Provenance and licensing tracked per-record so every artifact we deliver is traceable to its source agreement.
Role-based access, audit logging, and least-privilege defaults across our internal annotation and curation tooling.
Compliance program in active development — we will share the current status of HIPAA alignment, SOC 2, and partner-specific frameworks under NDA.