Principles
- —Minimisation — collect only what the platform needs to function.
- —Purpose limitation — data collected for one purpose is not repurposed silently.
- —Encryption — in transit (TLS 1.2+) and at rest (AES-256).
- —Least privilege — access is scoped by role and audited.
- —Separation — clinical and identifying data are stored under distinct trust boundaries.