Kaddio fully complies with the GDPR, ensuring data minimization, privacy-by-design, and secure processing. We support user rights such as access, correction, and deletion, and work only with subprocessors under signed Data Processing Agreements (DPAs).

Privacy Policy →

Kaddio adheres to the EU AI Act by classifying AI systems by risk, ensuring transparency, and applying human oversight for AI-driven decisions. We maintain documentation and performance monitoring to promote trustworthy AI practices.

Compliance Statement →

Kaddio meets EU MDR Class I requirements with a documented Quality Management System (QMS), post-market surveillance, and technical documentation. Our platform ensures safety and reliability for healthcare applications.

Contact us for a signed DoC →

Kaddio has successfully undergone a rigorous approval process by Inera, ensuring compliance with the requirements to provide health data to the Swedish National health system (1177 and NPÖ).

We work in accordance with the ISO 27001 standards. While Kaddio is not yet certified, we believe this helps us ensure robust information security management practices.

Data is encrypted at rest with AES-256 (256-bit key length) and in transit with at least TLS 1.2. This ensures that your information remains secure against unauthorized access.

Kaddio supports Multi-Factor Authentication (MFA) and multiple European Electronic Ids (eIDS) to provide an additional layer of security, ensuring that only authorized users can access sensitive data and systems.

We highly value the contribution from white hat security researchers and encourages responsible disclosure of vulnerabilities. Please contact us if you identify a security issue, we will do our best to address it prompty and you may be eligible for a reward.

Contact us →