.svg)
We’re serious about Privacy and Security
The protection of your organisation’s data comes first.
Beam’s tools are designed to meet and exceed the rigorous
high standards that our customers expect.
Uncompromising on security, with the credentials to prove it
Built for trust. Designed for care.
Secure by design
At Beam, security isn't an afterthought - it's woven into every line of code we write and every decision we make. We work with customers who handle some of the most sensitive data imaginable. That's why our platform is built around a simple principle: your data is yours, and protecting it is our job.
AI that works for you, not the other way round
Your data is never used to train AI models. You sign off on how your data is used. Every summary produced by Notes is reviewed and edited by a human before it goes anywhere. AI assists, but your staff stay in control.
Know where your data is
All Beam Notes data is stored and processed in Australia. Every recording, transcript, and summary is encrypted with AES-256 at rest and TLS 1.3 in transit.
Encrypted. Monitored. Protected. Verified.
AES-256 encryption at rest
All stored data is encrypted to government-grade standard.
TLS 1.2+ in transit
Data is encrypted end-to-end as it travels, so nothing can be read in-between.
Multifactor authentication
SSO and MFA available to ensure only authorised users can access data.
Anti-DDoS
Built-in protection keeps Notes, Interpret and Talk available even under sustained network attack.
Full audit logging
Every access and action is recorded, giving you a complete trail for compliance and governance reviews.
ISO 27001
Our information security management system is certified to the international gold standard.
Custom data retention periods
We only hold your data for as long as it's needed, decided by you.
Cyber Essentials Plus
Independently verified against the UK government's scheme for defending against cyber threats.
GDPR
Fully compliant with UK and EU data protection law, with privacy by design built into everything we do.
NHS DSPT
Registered on the NHS Data Security and Protection Toolkit with a Standards Exceeded rating.
Class I Medical Device
Registered with MHRA as a medical device and meets requirements for use in clinical settings.
APPs
Completely compliant with the Australian Privacy Principles and all relevant data protection law.
Frequently Asked Questions
Data is stored on AWS and GCP servers located in the same region as the customer. Storage is locally in the UK, USA, or Australia depending on the customer.
No. We have enterprise level agreements in place with LLM providers, guaranteeing that customer data is never used to train their models.
Customers define the retention period applied to the data we store. Data is automatically deleted once the retention period expires.
Only authorised users within your organisation can access your data. Beam staff access is strictly limited, role-based, and fully audited.
You can download copies of our security policies and certifications from trust.beam.org, which is our Trust Centre.
