Data Privacy & Security Standards
Frequently Asked Questions
Q1 - Once a document is submitted & it passes through the ML engine, and the appropriate data points are extracted. Is there any human intervention at the end of NanoNets?
Ans - No, there is no human intervention on any of the models, unless requested.
Q2 - Where does all the uploaded data reside?
Ans - All uploaded data resides in customer-specific S3 buckets, accessible only by the customer.
Q3 - What are the access controls on the servers that store that?
Ans - Access is controlled by system admin, with MFA & logs in place. Passwords are frequently changed as a security measure.
Other Security Measures -
- All images reside in dedicated S3 buckets by client identifier.
- Servers can be located in US, Europe, Australia, as per your requirement.
- Access is controlled by system admin, with with MFA & logs in place. Passwords are frequently changed as a security measure.
- Customers can request data deletion, and we will process your request in 2-3 working days.
Q4 - Is the data encrypted?
Ans - We take data encryption very seriously -
Data in Transit - Encrypted with HTTPS (SHA-256 with RSA Encryption)
Data at Rest - Can be encrypted with AES-256 encryption on request
Q5 - Where are your servers located?
Ans - We have instances running on the three major cloud service provides - AWS, GCP, Azure. We can host your data in your choice of location.
Q6 - Are you GDPR compliant?
Ans - Yes, we are 100% GDPR compliant.
Q7 - Are you OK signing DPAs with your customers?
Ans - Yes, we are completely fine with it.
Q8 - Are you OK signing BAAs with your customers?
Ans - Yes, we are completely fine with that.