Security & Clinical Governance

The questions your information-governance and clinical-safety teams will ask, in one place. This overview describes how AIMHI is designed; we work through the detail with each partner during onboarding.

Clinical Safety

  • Built with recognised clinical-safety standards in mind, such as the NHS DCB0129 and DCB0160.
  • Human oversight throughout — the platform supports clinicians, it does not make autonomous clinical decisions.
  • Risk and safety concerns are escalated to a human, with clinical oversight on the safety pathway.

Data Protection & Privacy

  • GDPR-aligned, under the supervision of the Data Protection Commission (Ireland).
  • Data minimisation by default; researchers and analytics work with anonymised or aggregated data.
  • Identifiable clinical information stays within the care relationship unless there is explicit consent and approval.
  • See our Privacy Policy for how website and enquiry data is handled.

Information Security

  • Enterprise-grade security with encryption in transit and at rest.
  • Hosted on Google Cloud Platform in the europe-west1 (Belgium) region, keeping data within the EU.
  • ISO 27001 certification is in progress.

AI Governance & Transparency

  • Clear about what the AI can and cannot do — capabilities and limitations are stated openly.
  • Continuous monitoring and quality assurance of AI interactions.
  • An ethical governance framework guides responsible development and use.

Access, Roles & Audit

  • Role-based access control across client, therapist, supervisor, and administrator roles.
  • Activity is logged to support audit and accountability.
  • Clinical supervisors and administrators have appropriate oversight of care delivered through the platform.

Assurance & Documentation

  • Data-sharing agreements and ethics approvals are put in place before any research use of data.
  • A Data Protection Impact Assessment and clinical safety documentation can be provided to partners on request.
  • We work with your information-governance and clinical-safety teams as part of onboarding.

Request the Detail

For our governance documentation pack, DPIA, or a conversation with your IG and clinical-safety teams, get in touch. Data-protection queries can also go to privacy@aimhi.health.

Contact Us