Information

About SkinScan

SkinScan is a secure, AI-powered wound care platform built for healthcare teams. Through a simple iOS app, nurses and wound specialists photograph patient wounds and receive instant AI analysis — including wound type, stage, size measurements, tissue assessment, healing trajectory, and clinical recommendations — all streamed to the device in real time.

A small physical reference tag placed beside the wound allows the system to calculate accurate, real-world measurements in millimetres and square centimetres directly from the photo.

Cases flow seamlessly between care team members. Facility administrators assign cases to doctors, who review the AI findings and write treatment plans. Nurses are notified the moment a plan is ready. Every visit is logged, creating a clear healing timeline that helps the entire team make informed decisions.

SkinScan also includes a dermatology screening feature that classifies skin lesions and flags potential concerns with a risk level.

All images and patient data are encrypted and stored exclusively within Canadian cloud infrastructure — nothing is ever saved on the user’s device. The platform is designed to align with PIPEDA, Saskatchewan’s HIPA, and internationally recognized frameworks, including HIPAA, GDPR, NIST, and ISO 27001.

SkinScan is developed and operated by Virtual Health Hub (VHH).

Privacy

Virtual Health Hub (VHH) is committed to protecting the privacy and confidentiality of all personal and health information entrusted to the platform.

What We Collect

SkinScan collects only the information necessary to deliver its services — wound and skin images, patient case details, care team interactions, and limited technical data required for secure operation.

How We Protect It

  • All data is encrypted in transit and at rest
  • Images and records are stored exclusively within Canadian cloud infrastructure
  • No images or patient information are ever saved on a user’s personal device
  • Access is role-based — nurses see only their patients, doctors see only their assigned cases, and administrators manage only their facility
  • User identity is verified through a secure authentication service at every interaction

What We Never Do

  • We never sell, share, or monetize patient data
  • We never store health information on personal devices
  • We never grant access beyond what a user’s role requires

Your Rights

Users and patients have the right to access, correct, or request deletion of their information. For any privacy concerns or requests, contact Virtual Health Hub directly.

SkinScan’s privacy practices are designed to align with PIPEDA, Saskatchewan’s HIPA, and leading international frameworks including HIPAA and GDPR.

Download Full SkinScan Privacy Policy (PDF)

Security & Compliance

SkinScan is built with security, data protection, and accountability as core design principles. Every layer of the platform — from the mobile app to the cloud infrastructure — follows recognized industry standards to safeguard patient and clinical information.

Data Protection

  • All wound images and patient records are encrypted during transmission and while stored
  • Data resides exclusively within Canadian cloud infrastructure
  • No health information is stored on user devices at any point

Access Control

  • Every user authenticates through a secure identity service before accessing the platform
  • Role-based permissions ensure nurses, doctors, and administrators only see what they need to
  • All access is logged and auditable

Infrastructure Security

  • The platform runs within a private, isolated network environment with layered security controls
  • Only authorized services can communicate with the database and storage systems
  • Automated monitoring detects and responds to unusual activity

Compliance Alignment

While SkinScan has not yet undergone formal compliance certification or Research Ethics Board (REB) approval, its architecture and operations are designed to align with:

ISO 27001 — International information security management standard

PIPEDA — Canada’s federal privacy law

HIPA — Saskatchewan’s Health Information Protection Act

HIPAA — U.S. health information security standards

GDPR — European data protection regulation

NIST — U.S. National Institute of Standards and Technology cybersecurity framework

Download Full SkinScan Security and Compliance Document (PDF)

Scroll to Top