After registering on Nutrium, one of the most asked questions by professionals is how their data is safe.

The software is compliant with the GDPR data policy (General Data Protection Regulation) regarding the data protection policy of the European Union. Therefore it is important to understand that the safety of your information as well as your clients' is one of our top priorities.

So you can understand a bit more about this matter, please read the following articles from our blog:

This data is stored with maximum safety in servers across Europe which are compliant with GDPR and it can only be deleted by the professional or by the designated team for data protection, with prior consent of the nutrition professional.

We have established Terms and Conditions, along with HIPAA Policies, that meet stringent standards for the security and protection of electronic Protected Health Information (ePHI). Our approach ensures adherence to critical legal requirements mandated by HIPAA, including the execution of a Business Associate Agreement (BAA). This agreement, which clearly outlines the responsibilities and obligations of all parties handling ePHI, becomes effective automatically upon your acceptance of our terms and conditions.

Furthermore, while third-party certification for HIPAA compliance is not legally required, Nutrium is committed to initiating HIPAA certification processes in the latter half of this year. This will include also efforts towards ISO 27001 and ISO 27701 certifications.

Find below further details on our compliance initiatives:

In case you have further questions about our data protection policy, you can contact our DPO (Data Protection Officer) directly: