Security, Compliance, & Certifications

BrainCheck is built for regulated healthcare environments and operates under formal security, privacy, and regulatory oversight.

Man-Using

FDA Regulation

BrainCheck Assess is an FDA Class II medical device.

As part of this designation:

  • BrainCheck maintains an FDA-compliant quality system
  • BrainCheck Assess undergoes FDA audits as required for Class II medical devices
  • Development, validation, and change management processes follow FDA regulatory requirements

BrainCheck Assess is a Class II, 510(k)-exempt computerized cognitive assessment aid regulated by the FDA. It is indicated as an aid in the assessment of cognitive impairment and is not intended to be used as a standalone diagnostic tool. Refer to product labeling for full indications, limitations, and intended use.

Cognitive-assessment.jpg

HITRUST Certification

i1 HITRUST Badge_Stacked Outline

The BrainCheck Platform is HITRUST certified.

HITRUST certification confirms that BrainCheck’s security and privacy controls have been independently assessed and validated against a comprehensive healthcare security framework.

Lock-Graphic

TX-RAMP Certification

TXRAMP-certification-logo

BrainCheck’s cloud platform is TX-RAMP Level 2 certified, demonstrating compliance with the Texas Risk and Authorization Management Program (TX-RAMP), administered by the Texas Department of Information Resources (DIR).

TX-RAMP establishes standardized requirements for security assessment, authorization, and continuous monitoring of cloud services used by Texas state agencies to process confidential or regulated government data, and aligns with NIST SP 800-53 Moderate security controls.

Placeholder_Article_03

HIPAA & Healthcare Compliance

BrainCheck supports HIPAA-compliant workflows and executes a Business Associate Agreement (BAA) with covered entities and eligible partners.

  • Protected Health Information (PHI) is handled using role-based access controls
  • Activity is logged to support auditability and compliance reviews
  • Data retention and deletion can align with customer contractual requirements
Placeholder_Article_02

Security Controls & Operations

Data Protection
  • Encryption in transit and at rest
  • Secure key management
  • Segregated environments

Access & Monitoring

  • Role-based access control (RBAC)
  • Least-privalege permissions
  • Audit logging and monitoring
  • Defined incident response procedures

Better cognitive care starts here.

Experience the power of our complete digital cognitive toolset.

Vendor Security Reviews

BrainCheck regularly supports security, privacy, and regulatory reviews for hospitals, health systems, academic medical centers, and research organizations.

Available upon request, often under NDA:

  • FDA regulatory documentation (scope-appropriate)
  • HITRUST certification materials
  • Security architecture overviews
  • Policy summaries and questionnaire responses

Contact us for documentation or vendor review requests.

BrainCheck_Logo_Symbol

Did you know?

Reading regularly can keep your mind engaged and healthy. Like a workout, but without the sweat.

LOGO_Marketplace_Accelerate_Partner_Badge_22_8_8-1024x1024.png

Ready to see BrainCheck in action?

Book a demo