Back
Security & Privacy

Patients trust you with their most personal photos. evooia protects that trust from the very beginning.

Before-and-after images are highly sensitive. They do not belong in private photo galleries, shared albums, or unsecured cloud accounts. That is why evooia follows one simple principle: every photo remains protected at all times.

01

Patient photos get their own private cloud.

evooia stores every image in a private, encrypted environment in Microsoft Azure’s Swiss data centres, the same infrastructure hospitals and banks run on. Never in iCloud, Google Photos or any other consumer service.

02

Never in the camera roll. Never in the gallery.

Photos are captured and kept inside the encrypted evooia app, completely separate from personal pictures. Nothing syncs to a private account, nothing surfaces in a shared album by accident.

03

Encrypted at every step.

Every photo is encrypted in transit and at rest to the industry’s highest standards, with the keys stored separately. Even if someone stole the data, they would see only numbers: no faces, no bodies, no detail.

04

Stored in Switzerland.

Patient data stays in data centres in Switzerland, protected by Swiss data protection law. The platform is designed to support GDPR, the revised Swiss FADP and HIPAA.

In daily use

Full control.

  • 01Role-based access
  • 02Full audit trail
  • 03Consent management
  • 04Data minimisation
  • 05Tamper-proof image verification
  • 06Regular encrypted backups

Standards

A certified foundation.

The infrastructure is independently certified, and the platform is designed around the frameworks medicine demands.

GDPR / DSGVO

EU data protection

Swiss FADP

revised revDSG

HIPAA-ready

US health privacy

ISO 27001 · SOC 2

Microsoft Azure infrastructure

Questions

Security and privacy, answered.

Where are patient photos stored?+
Patient photos are stored in Swiss data centres operated by Microsoft Azure, governed by Swiss data-protection law. They are never placed in a consumer photo service or synced to iCloud or Google Photos.
Is evooia GDPR and HIPAA compliant?+
evooia is designed around GDPR, the revised Swiss Federal Act on Data Protection (revFADP/revDSG) and HIPAA. The underlying infrastructure is independently certified to ISO 27001 and SOC 2 through Microsoft Azure.
Are the images encrypted?+
Yes. Every image is encrypted in transit and at rest, with encryption keys held separately. Without the keys the stored data is unreadable, so a breach would expose only numbers, not faces or bodies.
Do patient photos appear in the phone’s camera roll?+
No. Photos live inside the encrypted evooia app, not the phone’s gallery. Nothing syncs to iCloud or Google Photos and nothing can surface in a shared album by accident.
Who can access the patient photos?+
Access is role-based, so team members only see what their role permits, and every action is recorded in a full audit trail.
What happens if data is lost?+
In the unlikely event of data loss, evooia uses regular encrypted backups and defined recovery procedures to restore service as quickly as possible.
Is the data processed on the device or in the cloud?+
Images are processed on the device and stored in an encrypted, access-controlled environment in the Swiss data centres of Microsoft Azure. Access is role-based and every action is recorded in a full audit trail.

Talk to us

Have a security question?