ホーム Compliance & regulation
Compliance & data protection

Compliance and protection of your data

AI DiagMe helps everyone understand their lab results. Because this involves 健康データ, protecting your information and meeting regulatory requirements are central to how we operate. This page presents the frameworks we comply with and the documents we keep available — from GDPR to U.S. consumer privacy.

Last updated: July 2026

GDPR EU AI法 HDS Hosting U.S. Privacy Servers in France ANSM status confirmed
GDPR

Our GDPR compliance

The lab results and health information we process are special categories of data (Article 9 GDPR). We apply the strictest requirements regarding legal basis, consent, security and respect for individuals’ rights.

Documentation reviewed in July 2026

19Documents kept up to date
6Areas covered
Art. 5 → 49of the GDPR referenced

Documents available on request

These documents describe our processing activities and security measures in detail. Because they contain sensitive information, we share them on a case-by-case basis. Click a document : your email app opens with a pre-filled request addressed to contact@aidiagme.com.

Request the full package
EU AI法

Our EU AI Act compliance

この Regulation (EU) 2024/1689 governs artificial-intelligence systems. AI DiagMe applies the obligations that fall to it — transparency, user information, AI literacy, human oversight and risk management — and keeps the documentation up to date.

Documentation reviewed in July 2026

12Documents in place
4Areas covered
EU 2024/1689Reference regulation

Documents available on request

As with GDPR, these documents describe our AI design and governance choices. Click a document : your email app opens with a pre-filled request addressed to contact@aidiagme.com.

Request the full package
HDS Hosting

Our health-data hosting

The health data we process is hosted by a certified HDS host (Health Data Host, Art. L.1111-8 of the French Public Health Code), on servers フランス国内に設置. We document the split of responsibilities, the contractual clauses and the precise location of the data.

Documentation reviewed in July 2026

6Documents in place
フランスServer location
Art. L.1111-8 CSPReference framework

Documents available on request

These documents evidence our compliant hosting and the split of roles with the host. Click a document : your email app opens with a pre-filled request addressed to contact@aidiagme.com.

Request the full package
U.S. Consumer Privacy (B2C)

Our U.S. consumer-privacy compliance

For our individual users in the United States (direct-to-consumer sales), we apply the federal and state privacy framework — FTC, CCPA/CPRAの役割、 My Health My Data Act (MHMDA) および HBNR. HIPAA compliance will only apply to sales to U.S. laboratories — a step not yet undertaken.

Documentation reviewed in July 2026

10Documents in place
3Areas covered
FTC · CCPA/CPRAReference frameworks

Documents available on request

These documents describe our privacy commitments for the U.S. B2C market. Click a document : your email app opens with a pre-filled request addressed to contact@aidiagme.com.

Request the full package
よくある質問

Your data, your rights : frequently asked questions

Do you sell or share my health data?
No. We do not sell your health data and do not share it for any commercial purpose. Under French law, any sale of identifiable health data is prohibited (Art. L.1111-8 of the Public Health Code). Your data is used solely to provide the explanation of your results.
Where is my health data hosted?
In France, by a certified HDS host (Health Data Host), in accordance with Article L.1111-8 of the French Public Health Code. See the HDS Hosting section.
Is AI DiagMe a medical device?
No. In 2025 the ANSM confirmed that AI DiagMe is not a medical device. AI DiagMe provides educational insight and does not replace your doctor’s advice. Learn more.
How do I exercise my rights (access, rectification, erasure)?
Email us at contact@aidiagme.com. We respond as soon as possible, within one month at the latest. You may also contact the CNIL.
Do you use artificial intelligence, and how is it governed?
Yes. Our AI processing complies with Regulation (EU) 2024/1689 (the EU AI Act) : transparency, user information, human oversight and risk management. See the AI法 section.
Can I review your compliance documents?
Yes. Our records and policies are available on request, on a case-by-case basis : click a document in the sections above, or email contact@aidiagme.com.
お問い合わせ

A question about your personal data?

You can exercise your rights or ask us about our compliance practices at any time.

Exercise your rights

Access, rectification, erasure, objection, portability : email us at contact@aidiagme.com. We respond as soon as possible, within one month at the latest.

Privacy contact

For any question about the protection of your data or our practices : contact@aidiagme.com.

Publisher & hosting

Smart Medical Care SAS
37 Avenue Maréchal Foch
06000 Nice, France

Compliance governance. AI DiagMe’s compliance is led by the management of Smart Medical Care SAS. Each framework undergoes a documented gap analysis and regular review ; this page is updated as that work progresses.