Trust Center

Built for the most sensitive data you own

Your blood work tells the story of your body. We treat it with the same rigour a bank treats your savings — and the same discretion a doctor owes their patient.

GDPR Compliant

European-grade privacy

Your data is processed in line with the EU General Data Protection Regulation. You have the right to access, rectify, port and erase your information at any time, with full transparency on how it is used.

End-to-End Encryption

AES-256 in transit & at rest

Every biomarker, report and conversation is protected with AES-256 encryption — the same standard trusted by banks and intelligence agencies. Keys are rotated regularly and never leave secure hardware modules.

Data Sovereignty

You own your data

You decide what to share and for how long. Export your full history as a portable file, or permanently delete your account and all derived data with a single click — no friction, no retention games.

Secure Cloud

Hosted on certified infrastructure

Our backend runs on ISO 27001 and SOC 2 Type II certified cloud regions (AWS & Google Cloud). Network-level isolation, least-privilege access and 24/7 monitoring are enforced by default.

Day-to-day practices

Concrete commitments that go beyond the certifications.

Zero-knowledge access

Engineers cannot read your raw biomarker values. All access is audited, time-bound and requires hardware-key authentication.

HIPAA-aligned standards

Operational controls follow HIPAA Security Rule guidance even where not legally required, raising the bar for everyone.

Regional data residency

Choose where your data lives. EU-only residency is available on request to keep records inside European borders.

Manage your data

Visit your profile to export your complete history, request a copy of the data we hold, or permanently delete your account. We process every request within 30 days, in line with GDPR.

Open profile settings

Have a security question or want to report a vulnerability? Email security@healthbeyondnormal.com.