Built-in protection for patient data, verified by independent third parties.
Last updated: 11 June 2026
Overview
Data protection and security are serious topics — especially regarding the personal, clinical, health and medical data you store in your Nookal account.
Security and the protection of your data is our highest priority. This is a commitment we hold without exception.
Reports and Certifications
- SOC 2 Type 2: — independent audit of our security, availability and privacy controls.
- Penetration Testing: — regular independent testing of our infrastructure and applications.
- Vulnerability Assessments: — ongoing vulnerability management and remediation.
- PCI Attestation of Compliance (AOC): — available to customers who process card payments through Nookal.
- HIPAA Attestation: — independent verification of HIPAA compliance for healthcare organisations.
Requesting Reports
- How to request: Contact privacy@nookal.com with details of your organisation and the purpose of your request.
- NDA: Most reports are shared under a Non-Disclosure Agreement.
- Timeline: We aim to respond within 5 business days.
Where to Find the Detail
For a full description of the security measures behind these attestations — including encryption in transit (HTTPS/TLS) and at rest (industry-standard encryption such as AES-256), identity and access management, regional data residency, sub-processors, payments and PCI, and our responsible disclosure programme — see the Security & Compliance page.
Third-Party Audits and Reviews
Nookal supports third-party security audits and assessments conducted by our customers’ internal teams or auditors, subject to reasonable scoping and scheduling. Please contact privacy@nookal.com to discuss your audit requirements.
Continuous Monitoring
Nookal maintains continuous monitoring of security systems, including intrusion detection, log monitoring and vulnerability scanning. Anomalies and potential incidents are reviewed and escalated according to our documented incident response procedures.
Contact
- Security and privacy inquiries: privacy@nookal.com
- General support: support@nookal.com
Questions? Contact privacy@nookal.com for privacy and compliance enquiries, or support@nookal.com for product support.