In healthcare, patient data protection is not a feature added at the end. It is how we built the architecture. Every piece of patient data goes through de-identification before it ever reaches an AI model.
"We are GDPR compliant and offer a data protection concept that goes beyond. Our de-identifying concept ensures the safest possible handling of patient data — we de-identify all patient data before submitting to any LLMs."
"We are an AI and data company. We structure real-world clinical data and genomic data, making both available for faster and more secure clinical decision-making and for clinical trials."
Since founding · Amnexis · 2019–present
patient records ever exposed
to an unprotected AI model.
Architecture, not policy — de-identification is baked into every data path before any LLM ever processes a single word.
Every consultation recorded through QUIXXS is de-identified before it touches any AI model. Names, dates of birth, addresses, and identifiable diagnosis codes are removed or replaced with pseudonymous tokens first.
This is not a post-processing step — it is baked into the architecture. The LLM never sees identifiable patient data. Full stop.
The original patient record stays in the secure Amnexis environment. Clinicians see the full record. The AI only ever sees the de-identified version.
Full audio of the patient-clinician interaction recorded on-device. Nothing leaves unprocessed.
All personal identifiers — names, dates, addresses, diagnosis codes — stripped or pseudonymised before leaving this layer.
The LLM structures and analyses the safe version only. It never sees a patient name, date, or identifier.
Structured output is re-identified with the patient record inside the secure Amnexis environment only. Clinicians see everything. No one else does.
All data processed and stored in compliance with EU GDPR. Privacy by design, not retrofit.
Information security management aligned with the international standard. Systematic, audited approach.
Development aligned with EU Medical Device Regulation. Architecture prepared for the CE certification path.
Architecture and processes prepared for the Digital Health Application certification path in Germany.
For security-critical facilities, Amnexis offers complete data storage within Germany and an on-premise deployment option. Patient data never has to leave your infrastructure. Full data sovereignty — guaranteed.
Anonymised patient datasets from the Amnexis platform comply with international interoperability standards, opening pathways for large-scale healthcare studies and partnerships.
Amnexis-structured data is compatible with both standards — enabling large-scale clinical research.
Our team is happy to walk through our data protection concept in detail — tailored to your institution's requirements.
Get in touch