Security and compliance designed for sensitive health workflows.
ISO 27001 certified, MFA/SSO ready, IRAP-aligned deployments — VitalSignRx meets your security review without bespoke wiring.
Defence in depth, by default
ISO 27001 certified
Independent third-party audit of our information security management system.
Identity & access
MFA enforced, SSO via SAML/OIDC, role-based access scoped per stakeholder.
Encryption
TLS 1.2+ in transit, AES-256 at rest, customer-managed keys on Enterprise.
Auditability
Append-only audit logs across user, document, and admin actions.
Patient intake security
Time-limited links, optional one-time codes, no file attachments by default.
Download safeguards
Watermarked exports, download throttling, optional disable per role.
Deployment options
Multi-tenant SaaS or IRAP-accredited Azure dedicated tenancy.
AI processing controls
AI features off by default; per-feature opt-in; no training on customer data.
Independently certified
HIPAA Aligned
SOC 2 Ready
IRAP-Ready Deployments
Ready to walk through your security review?
Book a session and we'll map our controls to your requirements.