Certifications & compliance
Aligned with the regulators that matter where you practise
ProRadIQ operates under HIPAA-equivalent technical controls and aligns sign-off with the country-specific radiology council where the patient is located. We publish our posture rather than claim blanket certification.
Country regulator alignment
India — MCI/NMC. UK — GMC + IR(ME)R. UAE — DHA / DoH / MOH. Australia — AHPRA / RANZCR. Ghana — MDC. Kenya — KMPDC. Nigeria — MDCN. Sign-off is only by radiologists registered in the patient's jurisdiction. Centres can audit credential expiry per radiologist via the platform.
Data protection posture
India — DPDP Act 2023. UK — UK GDPR + Data Protection Act 2018. UAE — Federal Data Protection Law + ADHICS for healthcare. Australia — Privacy Act 1988 + APP. Kenya — DPA 2019. Nigeria — NDPR + NDPA. Ghana — Data Protection Act 2012. US clients — BAA on request.
Technical controls
TLS 1.3 in transit. AES-256 at rest. Role-based access. Hash-chained audit log on every signed report. Configurable regional data residency. No model training on identifiable PHI without explicit consent.
Quick facts
- Country-specific radiology council alignment
- HIPAA-equivalent technical posture
- DPDP / GDPR / NDPR / DPA / Privacy Act aware
- BAA available on request for US clients
- Tamper-evident hash-chained audit
This page describes ProRadIQ's app-owned controls and posture; it is not a third-party audit certification. We are happy to share specific compliance evidence under NDA.
