Privacy
Aegis BioCryption operates as a Business Associate under HIPAA. We process protected health information solely to provide the secure transfer service, under a signed Business Associate Agreement, and never use it for any other purpose.
Data we process
Imaging studies are encrypted under customer-managed keys and delivered to authorized recipients. Our application and billing layers see only opaque identifiers and byte counts — never patient identifiers.
Retention & disposal
Studies are held only for the time-boxed window set by the data owner, then irreversibly destroyed. Disposal is recorded in a tamper-evident audit.
Sub-processors & location
Data is processed and stored entirely within U.S. sovereign cloud boundaries. A current sub-processor list is provided to customers under agreement.
Your rights & the executed policy
This summary is informational. The binding privacy terms are set out in the Business Associate Agreement and Data Processing Addendum executed with each customer. Request the executed agreements.