Data Protection
Security and confidentiality of users’ health data are the foundation of Konto. All systems are designed “privacy by design” and “privacy by default,” in accordance with the GDPR and European data processing regulations.
Do you have any doubts, curiosities or suggestions? We look forward to reading from you! Write to us at info@rigenerai.com
Total control by the user
Each user has full control over who can access their data, in what manner, and for how long. Sharing is always conscious, temporary and revocable. Data can only be viewed by third parties in read-only mode with prior authorization.
Protected data, always
Data are pseudonymized and, where necessary, anonymized to minimize any risk. All documents are encrypted during transfer and storage in the cloud, on servers located exclusively in Europe. All access is tracked and auditable, with automatic alert and control systems.
Compliant and transparent technologies
Konto uses technologies such as AI, OCR, and LLM to provide advanced functionality (classification, summarization, reminders), always in accordance with ethical and legal guidelines on the use of artificial intelligence in healthcare. Under no circumstances is data used for commercial purposes without explicit consent.
Reversible informed consent
Any use of data is accompanied by a specific and transparent consent. The user can revoke consent at any time, effective immediately. Third parties must sign specific agreements (DPA) and comply with our security policy.
Compliance continued
Konto takes a proactive approach to compliance, with ongoing updates, security audits, and a technology-ethics committee overseeing the evolution of functionality.
Infrastructure is aligned with relevant standards: GDPR, NIS2, AI Act, EHDS, EAA.