NameActivitiesData types:LocationHosted in EUSecurity complianceTransfer measures
Viz.ai IsraelAWS EU platform management, technical support, customer support, data processing including anonymisation of dataPII, PHIDerech Menachem Begin 150, Tel Aviv-Yafo, IsraelNoISO27001, SOC2Not necessary
Viz.ai USPost market surveillance and patient safety incident reporting. Mandatory for MDR and FDA licensing. Personal data is transferred to identify incident. Attached mandatory reporting sheets outline PD transferred.PD1819 Polk Street 293, San Francisco, California, 94109NoISO27001, SOC2Secure transfer of details via Dropbox. File upload to FDA and EMA portals via mandatory reporting forms.
Amazon Web Services (AWS) EMEA SARLFile hosting servicesPII, PHI38 Avenue John F. Kennedy, L-1855, Luxemburg (staying outside of Frankfurt, GermanyYesENS High, AWS Data Processing Addendum (“DPA”)Not necessary
AWS USFile hosting services for granting access to Viz.ai EU platform. Technical measures include hashing of data at rest and encryption of data in transit.PIIUS OregonNoENS High, AWS Data Processing Addendum (“DPA”)Module 3 SCC
Salesforce.com IncProvision of assistance and support services for the Client and the Client's users of the Viz.ai platform. Data encrypted at rest with keys held and managed by Viz.ai IsraelPIISalesforce.com Salesforce Tower, 415 Mission Street, 3rd Floor, San Francisco, CA94105NoISO27001, ENS, Data Processing Addendum (“DPA”)BCR
Sumo LogicLog monitoring and analysisPIIVia Mecenate 78/A 20138 Milano (MI) ItalyYesSO27001, Data Processing Addendum (“DPA”)Not necessary
DropboxFile hosting servicesPIIOne Park Place, 5th floor, Hatch Street Upper, Saint Kevin's, Dublin 2, IrelandYesISO27001, SOC2 Data Processing Addendum (“DPA”)Not necessary.
Getstream.ioSecure messaging services for mobile endpoints. Fully encrypted and keys controlled by Viz.ai Israel.PII, PHIKleine-Gartmanplantsoen 21. Amsterdam, Noord-Holland 1017RP, NetherlandsYesISO27001, SOC2 Data Processing Addendum (“DPA”)Not necessary
Twillio SengridUsed for SMS messaging and emails with the Viz.ai application. Messages are encrypted in transit and Viz Israel controls the keys. Routing is via edge services in EU data centres.PII374 Beale Street 300, San Francisco Hosted in the USYesSOC2 Data. Processing Addendum (“DPA”)BCR’s and encrypted data in transit with keys held by Viz.ai Israel. Twillio do not have access to underlying data.
Twillio FCMUsed for SMS messaging and emails with the Viz.ai application. Messages are encrypted in transit and Viz Israel controls the keys. Routing is via edge services in EU data centres.PII374 Beale Street 300, San Francisco Hosted in the USYesSOC2 Data. Processing Addendum (“DPA”)BCR's and encrypted data in transit with keys held by Viz.ai Israel. Twillio do not have access to underlying data.
AtlassianUsed to store contact details of Viz Support customersPII350 Bush Street Floor 13, San Francisco CA94104, Hosted in the USNoISO27001, Data Processing Addendum (“DPA”)SCC’s
CarbonHelixProvide a managed Security Operations Centre for VizPII1607 Capitol Avenue, Cheyenne, WY82001, Hosted in the USNoSO27001, SOC2, Data Processing Addendum (“DPA”)SCC’s
IBM QRadarProvide a Security Incident and Event Management Toolset managed by CarbonHelixPII1 Orchard Road, Armonk, NY10504, Hosted in the USNoSO27001, Data Processing Addendum (“DPA”)SCC’s
Google WorkspaceProvides Viz.ai’s email, word-processing and document storage. Data is encrypted in transit and at rest with keys managed by Viz.aiPII1600 Amphitheatre Parkway Mountain View, CA94043, Hosted in the USNoSO27001, ENSSCC’s
Zoom55 Almada Boulevard, Suite 600, San Jose CA95113, Used for customer conference calls and remote meetingsPIIHosted in the USNoISO27001SCC’s (data encrypted end to end if Zoom application is used.
CoralogixEU-West-1 (Ireland) EU-West-2 (Stockholm). Used for analysis of log data. Will be replacing SumoLogicPIIHosted in the EU.YesISO27001, SOC2Not Necessary Data is encrypted in transit, managed, and controlled with keys held by Viz.ai Israel.