All personal information is encrypted for both transfer and storage, and is kept securely on cloud-based servers run by Amazon Web Services. Personal data (such as name and email address) is stored separately from medical data (such as information entered during a symptom assessment). Medical data is anonymized and can only be linked back to personal data using a unique key.
Our information architecture follows the security-by-design principle, implementing strict data separation and encryption of moving data and data at rest. Our servers are located in the EU and we have received our ISO27001 certification.