Security is part of how we work.
We build for healthcare with care, clear ownership, and an open line for customer questions. This page explains the security practices we use today and how to ask for more detail.
A transparent starting point
If you need more detail about our current security posture, we’re happy to share what is relevant to your review.
- Security-first product work
- Open customer conversations
- Vulnerability reporting
Security program
How we manage security
We maintain an information security management system (ISMS) to give our security work clear ownership and a consistent process for identifying risks, maintaining controls, reviewing evidence, and improving over time. These examples show how parts of that system translate into our day-to-day security work.
ISMS foundation
Governance and risk management
Our ISMS defines security responsibilities and provides a structured way to assess risks, maintain policies and controls, and review their effectiveness.
Examples in practice
Secure product development
We use automated, continuous checks for security and quality issues throughout development. Our shift-left approach helps identify and address issues as early as possible in the delivery process.
Access management
We limit access according to role and business need, and review it as people, responsibilities, and systems change.
Ongoing vulnerability management
We monitor code and dependencies, prioritize findings according to risk, and track remediation as part of day-to-day engineering.
Incident response
We maintain a clear route for reporting and investigating security concerns, coordinating the response, communicating appropriately, and recording lessons learned.
Customer transparency
Customers and partners can ask for more detail about our current security posture and the safeguards relevant to their evaluation.
Want to look closer?
Customers and partners can request our current security posture report, including a snapshot of the security work we monitor and improve over time.
The report request is handled securely through Aikido Security.
FAQ
Questions, answered plainly.
Security reviews often start with practical questions. Here are the answers we can make public today.
Ask us a questionTalk to us about security
Have a question about our security posture, need information for a customer review, or want to report a vulnerability? Contact us directly or use the form.
- Address
- ANA Healthcare
1 Boulevard Montplaisir
13011 Marseille, France - security.txt
- View our security.txt