You can think about security at Ada in three ways:
- The security patients have knowing they can tell Ada whenever they feel unwell and access credible medical expertise wherever they may be.
- The security doctors have supporting their clinical decision-making with Ada’s AI and library of thousands of rare and common conditions.
- The security patients and doctors have knowing the data they share with Ada is kept securely encrypted, not shared without their consent, and only used to improve access to credible medical expertise.
All three types of security require trust and transparency.
Ada couldn’t help millions of people manage their health without their trust, so we’re being transparent about what we do at Ada to maintain security.
So here’s how we manage security:
We follow ‘security by design’, which means Ada implements security from the beginning of the product lifecycle – not afterwards and not as an add-on.
We separate user details from health information and store each type of data separately in servers within the EU.
Our Information Security Officer, Jens, ensures every Ada employee fulfills their individual security responsibilities.
We manage the physical security of our offices to protect data, from automatic screenlocks on laptops to vaulting doors.
We regularly attempt to breach our own security to spot and fix any weak points.
Ada is audited regularly by external authorities and internal teams to ensure our compliance with regulations and standards.
Ada fulfills the following requirements:
Certified with the quality standard for information security
ISO 13485 compliant
Compliant with the quality standard for medical devices
Registered as medical device class 1 for the European Economic Area
European Union General Data Protection Regulation
'Bundesverband der Internetmedizin' – German agency for quality management