SECURITY & COMPLIANCE
Enterprise-ready. Procurement-friendly. No surprises for your security team.
Security is not a feature we bolt on. It is how we build. Every design decision starts with data protection. Every integration considers compliance. We do not add security—we start with it.
SECURITY FEATURES
Designed from day one with healthcare compliance requirements in mind. Every component built to meet HIPAA technical safeguards.
Business Associate Agreements ready for enterprise deployments. We take responsibility for PHI protection seriously.
Your patient data stays yours. We do not use protected health information to train models. Your data is never used for anything other than serving you.
We keep what we need and nothing more. Clear retention policies with automatic data purging. You control what stays and what goes.
AES-256 encryption for data at rest. TLS 1.3 for data in transit. End-to-end protection from device to storage.
Role-based access. Multi-factor authentication. Comprehensive audit logs. You control who sees what.
COMPLIANCE
We built Synexar knowing it would face security questionnaires. Here is what your IT team will find.
* SOC 2 Type II certification in progress. Expected completion Q2 2025.
DATA HANDLING
Data is processed in HIPAA-compliant infrastructure. All processing occurs within secure boundaries with audit logging enabled.
Encrypted at rest using AES-256. Stored in SOC 2 certified data centers. Geographic data residency options available.
TLS 1.3 encryption for all data in transit. Certificate pinning in mobile applications. No data transmitted without encryption.
Configurable retention policies. Automatic data purging. Complete data export and deletion on request.
We are happy to discuss security details, complete questionnaires, or schedule a call with our security team.