While attacks on hospital systems are increasing, affecting both large establishments and providers of digital solutions integrated into the care path, cybersecurity is no longer perceived as an additional technical layer but as a condition of existence for health players.
The growing dependence on public health system for digital technologies, from remote monitoring platforms to remote diagnostic solutions, has accentuated this vulnerability. Each new tool introduced into the ecosystem involves interconnections with sensitive medical data and flaws no longer only concern hospital infrastructure but also startups and HEALTHTECH SMEs, which has become a privileged target.
In this context, the automation of compliance takes on a strategic dimension, compliance-as-code platforms, initially developed for Fintech, now find a field of expansion in health. Their role is to transform a manual, slow and expensive process into a continuous infrastructure, integrated into the life cycle of medical software, an approach which aims to reduce dependence on ESNs, while allowing technologies to pass the validation stages necessary for their integration into health systems more quickly.
The Naq startup is part of this movement, born from the Accelerator of the National Cyber Security British Center, the company has designed a platform which ensures permanent compliance with cybersecurity, confidentiality and clinical security for digital health technologies. Already used by more than 150 solutions used within the NHS, it aims to expand its coverage to European and American standards such as ISO 42001, SOC2 or HIPAA.
NAQ has just announced that it has raised 6 million euros in series A from Automate Health, a private company supported by the Steyn Group. Funding will accelerate product development, strengthen artificial intelligence capacities and extend standards covered by the platform. Founded in 2020 by Nadia Kadhim, a lawyer specializing in GDPR, and Chris Clinton, former NATO cybersecurity expert, the company is positioned as an actor in European Helth Health, at the crossroads of cybersecurity and regulation.
