Our Certifications

We are a compliant and secure medical messaging platform

Our people and processes meet and exceed the highest standards around the world.


The GDPR regulates the processing of personal data for individuals residing in the EU by individuals, companies, or organisations. This set of data protection rules governs all companies operating in the EU, wherever they are based. Siilo complies with all GDPR standards.


The Health Insurance Portability and Accountability Act (HIPAA) sets the standard for sensitive patient data protection in the United States of America. To be HIPAA compliant, a company must abide by physical, network, and process security requirements set forth by the Department of Health and Human Services (HHS). Siilo meets these standards and requirements to operate in the USA.


ePrivacy applies all to important technical and legal standards from the EU General Data Protection Regulation to the IAB Europe OBA Framework. It conducts an in-depth audit of a company’s online and mobile products and gives valuable tips on how to design a business model that is in compliance with data protection regulations in the EU.

NHS Governance

The NHS code of governance sets out basic practice principles and processes to help NHS foundation trust boards of directors maintain good quality corporate governance, contribute to better organisational performance and provide safe, effective services for patients. Siilo operates in accordance with this code of governance in the United Kingdom.


NEN supports the standardisation process in The Netherlands and manages over 31,000 standards on an international, European and national basis. NEN investigates interested businesses looking to comply with various legislative standards and helps companies acquire the certifications they need. In The Netherlands, Siilo is certified against NEN 7510 and compliant with NEN 7512 and NEN 7513. View Siilo’s NEN 7510 certificate.


DCB-0129 is a standard that requires manufacturers of health IT systems and healthcare organisations to carry out a particular type of risk assessment on the product. This process determines whether or not the product is acceptably safe to go live. Siilo received its clinical risk management certification from NHS Digital.


The Information Commissioner’s Office (ICO) in the United Kingdom is a non-departmental body sponsored by the Department for Digital, Culture, Media and Sport. The Office provides organisations both domestic and international with information on how to register as data processors, report a breach and navigate data protection legislation in the UK. Siilo has been registered with the ICO to operate within the United Kingdom.

ISO 27001

ISO is an independent, non-governmental international organisation with a membership of 164 national standards bodies. The 27001 family of standard helps organisations manage the security of assets such as financial information, intellectual property, employee details or information entrusted by third parties. Siilo has recently updated its ISO 27001 certification to continue operating with information integrity. View Siilo’s ISO 27001 certificate.