Built for regulated industries
ClinixQM is designed to meet the security, privacy, and governance requirements of healthcare and medical device organizations. Explore our practices and request documentation.
Security
Access controls, encryption, tenant isolation, audit logging, and incident response practices.
Privacy
Data categories, retention policies, data subject rights, and GDPR compliance approach.
AI Governance
How AI features work, data handling, human oversight, and responsible AI practices.
Subprocessors
Third-party services we use to provide ClinixQM and their roles in data processing.
Updates
Security advisories, policy changes, and platform updates that affect trust posture.
Request Documentation
Need security questionnaires, DPA, or detailed documentation? Contact us.
Request docsTrust at a glance
Key security and privacy features built into ClinixQM.
Infrastructure Security
- Hosted on Microsoft Azure with data centers in multiple regions
- Data encrypted at rest using Azure-managed encryption
- All connections encrypted in transit with TLS 1.2+
- Logical tenant isolation at database level
Access Controls
- Role-based access control with granular permissions
- Enterprise SSO via OIDC/SAML (Scale plan)
- Session management with configurable timeouts
- Comprehensive audit logging of all user actions
Data Privacy
- GDPR-aligned data processing practices
- Data Processing Agreement (DPA) available
- Full data export capability
- Configurable data retention policies
AI Safeguards
- All AI processing happens server-side
- No client-side API keys or direct model access
- Human review required for critical decisions
- AI usage logged and auditable
Vulnerability Disclosure
We take security seriously and appreciate responsible disclosure of vulnerabilities. If you discover a security issue, please report it to us privately.
Security Contact: Please email security concerns to security@clinixqm.com. We aim to acknowledge reports within 2 business days and provide updates on remediation progress.