For security

Security, Privacy, and Control

We know your patients, co-workers and business require the highest level of trust. Here at Collective Minds we take an end-to-end approach to data security, privacy, and control. GDPR, privacy regulations, privacy-by-design and security-by-design have been our leading stars while building out our globally available, community driven services in Clinical consultation, Education and Research.
The Team

Information Security Policy

This policy statement outlines the CEO’s endorsement and intent for Information Security Management (ISMS) within Collective Minds Radiology. Its purpose is to communicate our ISMS expectations to our stakeholders, including those who provide services on our behalf, work on our premises, or operate with us through our Platform and SaaS services.

Some aspects of our operations, including handling and processing personal data and having privileged access to our systems and environments, present clear information security requirements. However, we are expected to treat all clients, internal hard copies, and electronic information securely throughout all our processes.

Our overall ISM objective is to protect the organization, our systems, and our SaaS from incidents that might adversely affect the people we work with, our business operations, our professional standing, and, ultimately, patient data. 

Information Security issues can include:

  • Confidentiality - People obtaining or disclosing information inappropriately.
  • Integrity - Information being altered or erroneously validated, whether deliberate or accidental.
  • Availability - Information not being accessible when it is required. 
  • Privacy - People obtaining or disclosing personal data in an insecure or unlawful manner.

Many types of incidents can threaten our effective use of information. These include performance, consistency, reliability, accuracy, and timeliness. More detailed ISMS objectives and monitoring will be defined separately from this policy, either within a stand-alone document or within a management review.

Our Information Security Management System will assess and manage ISMS risk. We shall also understand and comply with any applicable ISMS or related legal/regulatory requirements.

This statement has been prepared to demonstrate a commitment to continual improvement within our Information Security Management System. This message shall be communicated and understood throughout Collective Minds Radiology, and all persons performing work on our behalf are expected to share this commitment to these values.

This Policy Statement shall be made available to the public upon request and shall be communicated and adhered to by all employees, temporary staff, contractors, and visitors who enter any of our worksites.

This policy has been approved & authorized by

Pär Kragsterman

Co-founder and Chief Technology Officer (CTO)

Version 3 Updated 17/10/2024