Information Security

Find answers to your questions about data protection and information security.

Data protection

We recognise the critical importance of keeping patient data confidential and secure, and being transparent about the uses to which it is put. Cydar uses the minimum amount of identifiable data required for safe and effective operation. We do not share this data with third parties. We comply with all applicable national data protection laws, including but not limited to HIPAA in the USA and GDPR in Europe.

If you have questions or concerns regarding data protection and Cydar products and services, please email

Information security

Cydar takes information security seriously. We strive to make our systems as secure as possible through a design, technology choices, secure development practices, and continuous updates and monitoring. Our software undergoes regular internal and third party testing, and our systems are audited annually as part of our ISO 27001 certification.

If you have a security question about Cydar’s products or services, or you believe you have identified an issue, please email

Security news


Meltdown and Spectre

Posted in Security on 10 Jan 2018

Last week saw the public announcement of two serious vulnerabilities, Meltdown and Spectre. These are serious flaws that exploit the behavior of the CPU rather than software, which makes them both very pervasive and difficult to address.

read post