Security & Compliance
Privacy-first and audit-ready by design
Clinical psychology data is highly sensitive. ZYENEX CPMS is built with security controls that support confidentiality, integrity, and accountability.
Key security controls
Role-based access control
Least-privilege permissions ensure users only access what their role requires.
Audit logs
Every sensitive action and record access is logged with timestamps and user attribution.
Encrypted transport (TLS)
All data in transit is encrypted using industry-standard TLS protocols.
Secure data storage
Data at rest is encrypted with regular backups and disaster recovery procedures.
Consent as first-class data
Consent records are captured, versioned, and maintained as structured data objects.
Data minimisation
Purpose limitation and minimal collection by design -- only what is clinically necessary.
Configurable retention
Data retention policies configurable to match organisational and regulatory requirements.
Clinical responsibility
ZYENEX CPMS supports professional workflows. Clinical judgement remains with licensed professionals and authorised teams. The system is a tool, not a replacement for professional decision-making.
Data protection
ZYENEX CPMS is designed to support health-data protection obligations and consent-based processing. Specific compliance requirements depend on deployment context, governance policies, and organisational roles.