信頼

臨床的信頼のために作られました。

セキュリティ・プライバシー・品質を設計段階から組み込み、データをあるべき場所に保ちます。

一部のコンテンツは英語で表示されます。

A secure clinical workstation where analysis and data stay on-site.

データの保管場所はあなたの選択です

臨床プラットフォームは柔軟です。施設に合わせて完全オンプレミスまたはハイブリッドで運用でき、EUでのデータ保管も利用できます。既定では分析と保存はケアの現場で行われ、非識別化または明示的に同意されたデータのみが同期され、その管理権はあなたにあります。無料ツールのMedPodGPとEmuはさらに進んで完全にローカルで動作し、何もデバイスから出ません。

医療標準に基づいて構築

当社の製品は、医療が依拠する標準 — 画像と臨床データのためのDICOMとHL7、健康情報の取り扱いのためのHIPAA — に整合するよう設計され、認められた臨床ソフトウェアの品質・リスク管理・セキュリティの実践に基づいて構築されています。私たちは臨床およびセキュリティの標準に沿って設計し、実際以上を示唆するのではなく、状況をありのままに説明します。

セキュリティへの取り組み

責任ある開示を歓迎します。セキュリティに関する懸念は security@cloudkites.com までご報告ください。

Trust, in plain language

Security you can reason about, not just believe in.

Most security pages ask you to take a great deal on faith. We would rather explain how things actually work, in language a clinician — not a security engineer — can follow and check. The starting point is simple: the less your sensitive data has to travel, the fewer ways it can go wrong. So we designed the whole system around keeping that data close to where it is created and used, and around making sure that whatever does move is something you have explicitly agreed to move.

By default, analysis happens inside your facility. There is no quiet relay to a remote service, no background upload of images, no copy of a record sitting on someone else's machine because that was the convenient way to build it. If a feature genuinely benefits from sharing something — and some do — that sharing is opt-in, it is limited to de-identified or consented information, and it is visible to you rather than buried in a setting nobody reads. The principle is that you should never be surprised by where your data has been.

Trust also depends on being able to look back. Our outputs are deterministic and reproducible: the same input produces the same result, and every step is logged so it can be retraced later. That matters in a setting where someone may, months on, need to explain exactly why a particular result appeared and what informed a decision. A tool that cannot account for itself has no place in clinical work, however clever it is. We would rather be predictable and explainable than impressive and opaque.

Trust you can verify

Four assurances hold across everything we build.

Secure by design

Security is engineered in from the start, not bolted on later.

Data stays on-site

Analysis and storage happen where care happens, by default.

Auditable

Outputs are reproducible and logged, so they can be traced.

Your data, your control

Only de-identified or consented data is ever synced.

Where data lives

Your data lives where you choose.

The clinical platform is flexible: run it fully on-premise or in a hybrid arrangement, and choose EU data residency if you need it. By default, sensitive imaging and patient data never leave the building — analysis runs on-site, and you remain in control of anything that is ever shared. The free tools, MedPodGP and Emu, are completely local, so nothing leaves the device at all.

On-premise or hybrid — whichever fits your facility.
EU data residency available; only consented data is ever synced.
MedPodGP and Emu are completely local — nothing leaves the device.

Servers and a clinical workstation inside a facility, with no link out to the cloud.

On-premise or hybrid — your choice; the free tools stay completely local.

Reproducible by design

The same answer, every time you ask.

Consistency is not a small feature; it is the foundation that makes everything else trustworthy. When a tool can give two different answers to the same question, you can never fully rely on either. Our outputs are built to be reproducible by default, so a result you saw today is the result you will see tomorrow — and the one a colleague will see when they double-check your work. Predictability is what turns a clever model into a clinical instrument.

The same input gives the same result.
Every step is logged and can be retraced.
Outputs are structured the same way, every read.

Deterministic outputs: the same input yields the same structured result, every read.

How trust is built in

Flexible data residency

On-premise or hybrid — your choice — with EU data residency available for the clinical platform.

Healthcare standards

Designed to align with DICOM, HL7 and HIPAA, and to clinical-software quality and risk-management practice.

Human in the loop

Assistive, never autonomous: clinicians and clinical staff review, approve or override every result.

Responsible disclosure

We welcome security reports and describe our status plainly, without overclaiming.

A human in the loop

Assistive, never autonomous.

There is a line we do not cross: our tools assist, they do not decide. Every result a model produces is a suggestion placed in front of a person — a clinician or a member of the clinical staff — who reviews it, approves it, edits it, or sets it aside. Nothing acts on its own, and nothing is treated as a verdict simply because software produced it. A human is always in the loop, and that human holds the responsibility, exactly as they would without the tool.

Keeping a person in control is not a limitation we tolerate; it is a design choice we defend. It is what makes the outputs accountable, what keeps clinical judgement where it belongs, and what lets anyone trace, afterward, exactly who decided what and why. Combined with reproducible, auditable behaviour, it means an AI suggestion never quietly becomes an action no one chose. The tool proposes; the clinician disposes — and the record reflects that, every time.

A clinician reviewing and approving an AI-assisted suggestion at a workstation.

Designed to standards

DICOM imaging interoperability

HL7 clinical-data exchange

HIPAA-aligned health-information handling

Clinical-software quality & lifecycle

Risk management

Information security management

Data protection & privacy

Secure-by-design engineering

A shared responsibility

Trust is something we keep earning.

Security is never finished. Threats change, software changes, and the careful posture that is right today needs revisiting tomorrow. We treat trust as an ongoing practice rather than a box that gets ticked once: we design for it from the first line, we build to recognised standards for clinical-software quality and data protection, and we hold our own work to review rather than assuming it is correct. When we are still working toward a particular assurance, we say so plainly instead of implying more than is true.

We also believe security improves when more people are looking. If you find a weakness, we want to hear about it — responsible disclosure is welcomed, not treated as an embarrassment to be managed. And the relationship runs both ways: you stay in control of your data, you decide what is ever shared, and you can ask us, at any time, exactly how something works. The honest answer to a security question is worth more than a reassuring one, and that is the kind of answer we aim to give.

よくある質問

私のデータはどこにありますか — オンプレミスですか、クラウドですか？

あなたの選択です。臨床プラットフォームは完全オンプレミスまたはハイブリッドで動作し、EUでのデータ保管も利用できます。既定では患者データは現場にとどまり、特定のオプトイン機能のために非識別化または同意済みのデータのみが同期されます。無料ツールのMedPodGPとEmuは完全にローカルで、何もデバイスから出ません。

どの医療標準に整合していますか？

当社の製品は、画像と臨床データの相互運用性のためのDICOMとHL7、健康情報の取り扱いのためのHIPAAに整合するよう設計され、加えて認められた臨床ソフトウェアの品質・リスク管理・セキュリティの実践に基づいています。

AIの出力は自律的ですか？

いいえ。出力は支援的で、常に人間が関与します — 臨床医と臨床スタッフが確認・承認・却下し、各製品の意図された用途が明示されています。

Built for clinical trust.

Have a question about security, privacy or how your data is handled? We're glad to talk.

はじめる