labgenie.aiRequest a demo

Trust & security

Live today

Tenant isolationLive

Each customer in its own database schema.

Role-based accessLive

JWT auth, least-privilege roles.

Encrypted in transitLive

HTTPS enforced, HSTS configured.

Our compliance program.

SOC 2 and GDPR are aligned and fully compliant. Every other framework is in audit. Reports and current attestation status are available under NDA.

Frameworks & statusCompliantIn audit
SOC 2

SOC 2 Type II

Compliant
GDPR

GDPR

Compliant
DPDPA

India DPDPA

In audit
CCPA

CCPA / CPRA

In audit
AI ACT

EU AI Act

In audit
ISO 27K

ISO 27001

In audit
PCI

PCI DSS

In audit
FSMA

FSMA 204

In audit
21 CFR

FDA 21 CFR 11

In audit
WCAG

WCAG 2.1 AA

In audit

The medallions are our own visual treatment, not official seals. Each official seal appears once its audit completes.

How your data is handled

Step 1

Encrypted in transit

Uploaded over HTTPS, HSTS enforced.

Step 2

Isolated per tenant

Your data sits in its own schema.

Step 3

Processed by LabGenie's AI

You keep ownership of your data.

Responsible AI

Classified Limited Risk under the EU AI Act.

LabGenie informs decisions, it doesn't make them, which keeps it in the EU AI Act's lightest tier, with transparency our core obligation.

  • Advises, you decide

    LabGenie recommends; people make the call.

  • AI, clearly disclosed

    We're rolling out labels on every AI-generated output.

  • Standards-aligned AI

    We only use AI that meets regulatory and data-protection standards.

Reviewing LabGenie with your security team?

  • Security documentation under NDA
  • Architecture and data-flow review
  • Subprocessor and residency details
Request security documentationTalk to our security team
security@labgenie.ai

General questions: hello@labgenie.ai

Talk to security

Bring your security team. We'll bring the answers.

Get our security documentation under NDA, and see exactly how your data is handled.

Request a demoBecome a design partner