Solutions

Purpose-built for the
way your practice actually works.

Healthcare data governance looks different in a radiology practice, a pathology lab, and a genomics consortium. SECUVA ships modules that match the modality, the workflow, and the regulatory frame - not a generic compliance checklist.

By organisation type

Where SECUVA shows up.
Three operating models. One platform.

Whether you are the health network setting policy, the research institute consuming data, or the AI vendor receiving it - the SECUVA agent meets every stakeholder in the chain with the same guarantees and the same audit trail.

By clinical modality

One agent.
Every clinical data type.

Each modality hides patient identity in its own surfaces - pixel overlays in imaging, label images in pathology, report headers in cardiology, sample IDs in genomics. SECUVA handles all of them with one platform and one audit trail.

Radiology

Radiology

Powered by PixelIQ

Third-party radiology AI keeps coming up in strategy meetings. Legal keeps saying no because images leave the network with patient identifiers still attached.

PHI surfaces handled
DICOM headersBurnt-in pixel textStructured reportsPrivate creator tags
Explore radiology
Pathology

Pathology

Powered by SlideIQ

The whole-slide image is de-identified. The macro label image and LIMS barcode often are not - and both can re-identify a patient.

PHI surfaces handled
WSI metadata headersMacro label imageLIMS barcodeSlide metadata
Explore pathology
Cardiology

Cardiology

Powered by CardioIQ

The waveform is clean. The report header is not. Cardiology AI partnerships stall on the same patient-identifier exposure as imaging.

PHI surfaces handled
ECG report headersDevice metadataClinical message wrappersVendor cardiology fields
Explore cardiology
Genomics

Genomics

Powered by GenomeIQ

Variant calls are stripped. The genome is not. Sample IDs, family-link metadata, and rare-variant re-identification risk all need handling before release.

PHI surfaces handled
VCF / BAM / FASTQ headersSample identifiersFamily-link dataRare-variant suppression
Explore genomics
Clinics & Allied Health

Clinics & Allied Health

Powered by SECUVA Platform

Small practices are expected to meet the same Privacy Act obligations as large health networks - usually without a privacy team or dedicated IT.

PHI surfaces handled
Patient recordsImaging exportsReferral lettersFree-text clinical notes
Explore clinics & allied health
Common scenarios

Three situations where
SECUVA fits exactly.

Most teams arrive here from one of three places. If your situation reads like any of these, you already know which deep page to start with.

Your AI vendor pilot has stalled in legal.

The hospital wants to ship a radiology AI pilot. Legal is six months in on the data-sharing agreement and counting. The problem isn't the contract - it's the lack of a defensible de-identification posture to anchor it to.

Your HREC-approved cohort has nowhere to land.

The ethics committee approved the study. The PACS export script from 2022 isn't HREC-grade. A cohort that should take days to assemble is taking months because de-identification is still treated as a manual project rather than infrastructure.

Your AI product can't get past hospital security review.

Your model works. The clinicians want it. Procurement still won't approve because deployment would require raw PHI on your infrastructure. SECUVA keeps your scope of data limited to exactly what your model needs - and nothing more.

Built for the Australian regulatory environment

Compliance,
end-to-end.

SECUVA was designed around Australian healthcare law and regulatory expectations from day one - not retrofitted from a US or EU baseline. The Privacy Act, OAIC guidance, and clinical interoperability standards are the engineering brief, not a checklist.

No HIPAA framing · no US-centric vocabulary
Privacy Act 1988 (Cth)
APPs 6 & 11
Secondary use controls and de-identification for data security
OAIC Guidance
De-id health info
Compliant de-identification method - not just header removal
DICOM PS3.15
Aligned profiles
Comprehensive attribute coverage, configurable per-tag handling
HL7 v2 / FHIR R4
De-id spec
Segment- and resource-level PHI removal and pseudonymisation
My Health Records Act
MHR obligations
Secondary use consent tracking and audit
ISO 27001:2022
Annex A controls
Information security management alignment
HREC / Ethics Committees
Audit exports
Independently verifiable log exports in submission format
One platform

Same agent.
Same audit trail. Every modality.

You do not need a different vendor for each clinical surface. SECUVA ships one on-prem agent that handles every data type, governed by one policy engine, recorded in one tamper-evident ledger - whether you started with radiology, expand into genomics, or light up a clinical-AI partnership next quarter.

Most customers begin with a single modality - radiology being the most common entry point - and add others as their data-sharing program matures. The agent, the policy framework, and the audit ledger do not change. New modalities switch on inside the same deployment.

One agent, every modality

The same on-prem agent handles DICOM, HL7, FHIR, VCF and free-text clinical notes. One deployment - every clinical data type covered.

Same governance posture

Policy engine, RBAC, mutually authenticated channels and audit ledger are identical across every solution. No surface-by-surface patchwork.

Single tamper-evident ledger

Every transformation - across every modality, every recipient, every pipeline - lands in one independently verifiable ledger.

Get started

See SECUVA in your environment.

Tell us your modality, your PACS or EMR, and the AI partner or research collaborator you are trying to enable. We will show you exactly where SECUVA fits and what changes from day one.