Safety, security & compliance

We have the tools to provide a safe and secure digital environment for the clinical management of healthcare data. This includes compliance with all standards relating to information governance, clinical risk management and cyber security

Information governance & data protection

At Mindwave, we understand that protection of clinical data is important. For this reason, we apply the highest standards of information governance to everything that we do.

We follow principles of data protection by design and default to ensure best practices are followed, data collection and processing is transparent and clearly explained and where possible, our platforms enable users to exercise their rights under GDPR.  We provide physical, electronic, and procedural safeguards to protect any information we process and maintain.

Mindwave are DTAC compliant and have extensive experience working collaboratively with clients to complete DPIAs and create documentation for platforms including terms of service, privacy notice and consent.  Mindwave is supported by an independent DPO.

Maia’s DTAC , GDPR data mapping and template DPIA can be provided on request.


  • DSP Toolkit 2022/23 – Standards Exceeded
  • IASME Governance standard – Certified
  • GDPR- Compliant
  • ICO – Registered
  • DTAC – Compliant

Clinical risk management

As our products and services are catered to healthcare providers we prioritise clinical safety. We ensure the effective application of the clinical risk management standard for manufacturers DCB 0129, which we share with our clients so that they are able to complete their own clinical risk via the DCB 0160 standard.

Clinical risk management is baked into our design and development process to enable us to make any changes identified quickly and easily and the team focus on identifying design mitigations to remove potential hazards wherever possible, rather than relying on training or changes to business processes.  Mindwave is supported by an independent CSO.    

The clinical risk management system and hazard log for Maia is available on request with bespoke versions provided to clients based on their enabled functionality.

Cyber security

For Mindwave, reducing cyber risk and staying secure is top priority. We take effort and pride ourselves in the knowledge that our products and services exceed the industry standard to protect patients, healthcare professionals and their associated organisations.

 We are certified with Cyber Essentials Plus and exceeded the National Data Guardian’s 10 Security Standards as part of our Data Security and Protection Toolkit accreditation.


  • Cyber Essentials – Certified
  • Cyber Essentials Plus – Certified
  • ISO27001 – Certified

We are certified