Skip to content

Security

Protecting patient information is foundational to TheTrialMate. This page summarizes our current control posture.

HIPAA-readiness

Our systems are built and audited to align with HIPAA technical safeguards. We do not sell patient data.

How we handle your data

  • Documents uploaded to ConsentSimplify are processed in-memory and never stored.
  • Data is encrypted in transit (TLS) and at rest.
  • Access to patient data is restricted on a least-privilege basis.
  • You can export or delete your data at any time from your profile.

Responsible disclosure

If you believe you have found a security vulnerability, please report it privately to security@thetrialmate.com. We will acknowledge your report and keep you updated as we investigate.