Wherever we work we comply. We make sure that we meet the data protection and other legal requirements of the countries we operate in. This includes the General Data Protection Regulation (GDPR) in Europe, the UK’s Data Protection Act and the Health Insurance Portability and Accountability Act (HIPAA) in the US. We meet all of the requirements set out by the NHS Data Security and Protection Toolkit and adhere to the Caldicott Principles. And our team remains up to date with compliance developments as they emerge.