Security & Clinical Governance
The questions your information-governance and clinical-safety teams will ask, in one place. This overview describes how AIMHI is designed; we work through the detail with each partner during onboarding.
Clinical Safety
- Built with recognised clinical-safety standards in mind, such as the NHS DCB0129 and DCB0160.
- Human oversight throughout — the platform supports clinicians, it does not make autonomous clinical decisions.
- Risk and safety concerns are escalated to a human, with clinical oversight on the safety pathway.
Data Protection & Privacy
- GDPR-aligned, under the supervision of the Data Protection Commission (Ireland).
- Data minimisation by default; researchers and analytics work with anonymised or aggregated data.
- Identifiable clinical information stays within the care relationship unless there is explicit consent and approval.
- See our Privacy Policy for how website and enquiry data is handled.
Information Security
- Enterprise-grade security with encryption in transit and at rest.
- Hosted on Google Cloud Platform in the europe-west1 (Belgium) region, keeping data within the EU.
- ISO 27001 certification is in progress.
AI Governance & Transparency
- Clear about what the AI can and cannot do — capabilities and limitations are stated openly.
- Continuous monitoring and quality assurance of AI interactions.
- An ethical governance framework guides responsible development and use.
Access, Roles & Audit
- Role-based access control across client, therapist, supervisor, and administrator roles.
- Activity is logged to support audit and accountability.
- Clinical supervisors and administrators have appropriate oversight of care delivered through the platform.
Assurance & Documentation
- Data-sharing agreements and ethics approvals are put in place before any research use of data.
- A Data Protection Impact Assessment and clinical safety documentation can be provided to partners on request.
- We work with your information-governance and clinical-safety teams as part of onboarding.
Request the Detail
For our governance documentation pack, DPIA, or a conversation with your IG and clinical-safety teams, get in touch. Data-protection queries can also go to privacy@aimhi.health.
Contact Us