Book a demo
Draft — pending legal review
Legal

Trust Center

Last updated: 2026-05-16

Ayureon, Inc. operates a healthcare interoperability platform. We move sensitive clinical data — so trust is the product. This page summarizes how we approach privacy, security, and compliance, and links to the detailed policies that govern our practices.

Who We Are

Ayureon, Inc. is a U.S. company headquartered in Austin, Texas. We design and operate the Ayureon interoperability platform, including the public API at api.ayureon.com and supporting services.

Privacy

  • We do not sell personal information.
  • We honor patient rights under HIPAA, including access, amendment, accounting of disclosures, restrictions, confidential communications, and revocation of authorization.
  • We honor consumer rights under CCPA/CPRA and other state consumer privacy laws.
  • We honor Global Privacy Control (GPC) signals.

See the full Privacy Policy.

Security

  • Encryption at rest (AES-256) and in transit (TLS 1.2+).
  • Role-based access with minimum-necessary enforcement.
  • Audit logging of access to health information.
  • Annual workforce training on HIPAA and cybersecurity.
  • Documented incident response and breach notification procedures.

See the full Security overview.

Compliance Posture

Ayureon, Inc. designs its systems to align with:

  • HIPAA Privacy Rule (45 CFR Part 160 and 164, Subparts A and E).
  • HIPAA Security Rule (45 CFR Part 164, Subparts A and C).
  • HITECH Act breach notification requirements.
  • CCPA/CPRA and analogous state consumer privacy laws.

Where applicable, Ayureon, Inc. acts as a HIPAA business associate under written Business Associate Agreements with covered entities.

Subprocessors

Ayureon, Inc. uses vetted subprocessors to deliver platform services. Each subprocessor that processes PHI is bound by a Business Associate Agreement.

Responsible Disclosure

If you believe you have discovered a security vulnerability or PHI exposure related to an Ayureon, Inc. service:

  • Email security@ayureon.com with a description and reproduction steps.
  • Do not access or download data beyond what is necessary to demonstrate the issue.
  • Allow a reasonable window for triage before public disclosure.

Contact

Ayureon, Inc. 500 W 2nd Street, Suite 1900 Austin, TX 78701

  • Privacy: privacy@ayureon.com
  • Security: security@ayureon.com
  • Legal: legal@ayureon.com

Document Map

DocumentWhere
Privacy Policy/privacy
Terms of Service/terms
Security/security
source: Notion Legal & Compliance Hub (cross-section)