Your confidential data is safe with us.
Precision medicine product development involves some of the most sensitive intellectual property in the world. Boudicca® DX has built its infrastructure from the ground up to protect it — for every client, on every engagement.
DATA SECURITY
Encrypted cloud storage
All client and business documentation is stored in Dropbox Business — encrypted, automatically synced across EU and US offices, and recoverable for up to 10 years via extended version history.
SOC 1/2/3, ISO 27001, ISO 27017, ISO 27018, HIPAA/HITECH, and ISO 27701
Managed email accounts
All employees and consultants are required to use Boudicca® DX managed email accounts through Google Workspace. No personal email accounts are permitted for client communications or file sharing.
Controlled data access
All employees and consultants are required to work within Boudicca® DX managed systems. Access to client files is restricted to authorized personnel only, ensuring your confidential information is never shared beyond those who need it.
Confidentiality agreements
Every Boudicca® DX consultant is required to sign a Non-Disclosure Agreement (NDA) before engaging on any client project. Consultant credentials and signed agreements are maintained on file in our Quality Management System.
BUSINESS CONTINUITY
Backup power
US headquarters is equipped with a commercial emergency backup generator with automatic transfer switches, ensuring uninterrupted operations during power outages.
Off-site data backup
All files are automatically backed up to Dropbox cloud storage and synced across EU and US sites in real time, eliminating single points of failure.
Backup internet
US headquarters maintains Starlink satellite internet as a backup connectivity layer, ensuring uninterrupted access to cloud systems, client communications, and video conferencing in the event of primary internet outages.
Physical security
US headquarters is protected by security cameras, motion detectors, a perimeter security fence, security gate, smart locks, and a monitored security system.
Regulatory standards
We maintain current licensed subscriptions to ISO, CLSI, and relevant regulatory standards, ensuring our guidance always reflects the latest requirements.
INSURANCE AND LIABILITY
General & professional liability coverage
Boudicca® DX holds both general liability and professional liability (errors & omissions) insurance policies covering our consulting services in the United States and European Union. This provides our clients with an additional layer of protection and demonstrates our commitment to accountable, professional practice.
EU & US PRIVACY COMPLIANCE
Boudicca® DX is committed to compliance with the General Data Protection Regulation (GDPR) and applicable US privacy laws. Our Ireland-based EU subsidiary (Boudicca DX Limited) serves as the data controller for personal data collected from EEA individuals.
Questions about our security practices? We’re happy to provide additional information to support your vendor qualification process → info@boudiccadx.com
