// Trust & Security Report

    Paige AI, Inc. (now a subsidiary of Tempus AI, Inc., NASDAQ: TEM) logo

    Paige AI, Inc. (now a subsidiary of Tempus AI, Inc., NASDAQ: TEM)

    Computational pathology / cancer-diagnostic AI platform: FDA-cleared diagnostic AI suites (Prostate, Breast, GI, PanCancer), licensable foundation models (Virchow, Virchow2, Virchow2G, PRISM) for biopharma R&D, the Paige Alba multimodal AI co-pilot, and the Paige Platform for digital-pathology case management/integration.

    Certifications held

    2

    Maturity

    Enterprise

    Trains on your data

    Unknown

    Trust center

    Yes

    // Certification ledger

    Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.

    ISO 27001
    HELD

    Our security measures are evaluated by a qualified third party annually as part of maintaining our ISO 27001 certification.

    Verify on paige.ai
    GDPR (posture)
    HELD

    Policy details EU data-subject rights consistent with GDPR (access, correction/rectification, deletion, restriction of processing, and data portability) and lists a designated Data Protection Officer for Paige.AI, Inc.

    Verify on paige.ai
    > Show 7 unconfirmed / not-held certifications
    SOC 2 (Type 1/2)
    NOT CONFIRMED

    No public evidence: SOC 2 is not mentioned anywhere on paige.ai's privacy policy, terms & conditions, or product pages, and no independent SOC 2 report reference was found.

    source: paige.ai
    HIPAA
    NOT CONFIRMED

    No public evidence on the vendor's own domain. paige.ai's Terms & Conditions state only: 'you should not include confidential information about you...or information about your health status' in communications; the Privacy Policy states 'Provider Customers are primarily responsible' for patient health information and makes no HIPAA compliance claim. A HIPAA/GDPR 'cloud storage compliance' claim is attributed to Paige only by third-party sources (e.g., an NCBI Bookshelf clinical review), not by paige.ai itself.

    source: paige.ai
    ISO/IEC 42001 (AI management system)
    NOT CONFIRMED

    No public evidence found on vendor domain or via search of an ISO 42001 certification, despite Paige being a foundation-model AI company.

    source: paige.ai
    CSA STAR
    NOT CONFIRMED

    No public evidence found.

    source: paige.ai
    FedRAMP
    NOT CONFIRMED

    No public evidence found; not applicable based on known customer base (hospitals, labs, biopharma), no federal-government-specific offering identified.

    source: paige.ai
    PCI DSS
    NOT CONFIRMED

    No public evidence found; not applicable, Paige does not appear to process cardholder payment data directly as part of its clinical/enterprise product.

    source: paige.ai
    ISO 27017 / 27018 / 27701
    NOT CONFIRMED

    No public evidence found; only the base ISO 27001 certification is referenced on the vendor's own domain.

    source: paige.ai

    // Privacy & AI training

    Trains on customer data

    Not stated

    Data processing agreement

    Not offered

    Data region

    United States primary ("stored in the United States by us and/or our business partners"); some cookie-derived data may be stored outside the U.S.; GDPR rights are extended to EU data subjects, implying some EU data handling capability.

    Homepage states foundation models (Virchow/PRISM family) are 'cumulatively trained on over 1.5 million slides,' but no page states whether case data submitted by hospital/lab Provider Customers through the Paige Platform is used to further train models, and no opt-out mechanism is described. This is a real gap for enterprise buyers evaluating AI-training posture.

    // Security controls

    Information security certification

    ISO 27001 certified, with security measures evaluated by an independent third party annually.

    paige.ai

    Access controls

    Company states it takes 'technical, administrative, and physical measures reasonably necessary to restrict access to Personal Information to authorized individuals.'

    paige.ai

    Third-party/vendor security requirements

    Business partners receiving Personal Information are contractually required to use 'substantially the same level of security measures.'

    paige.ai

    Data Protection Officer

    A named Data Protection Officer for Paige.AI, Inc. is listed with contact address and email.

    paige.ai

    Encryption in transit / at rest

    n/a: not explicitly specified in any vendor-domain document found; no public statement on encryption standards.

    paige.ai

    // Products & data scope

    Paige Prostate SuiteFDA-cleared diagnostic AI (clinical pathology)

    data: Whole-slide H&E images of prostate needle biopsies; patient case data within hospital/lab workflow.

    Assists detection, diagnosis and grading of prostate cancer.

    Paige Breast SuiteDiagnostic AI (clinical pathology)

    data: Whole-slide H&E images from breast biopsy/excision specimens.

    Supports identification/classification of breast cancer.

    Paige GI SuiteDiagnostic AI (clinical pathology)

    data: Whole-slide images across the gastrointestinal tract.

    Detects benign and malignant GI conditions; built on newer foundation-model technology.

    Paige PanCancer SuiteDiagnostic AI (clinical pathology, multi-tissue)

    data: Whole-slide images across many tissue types, including rare cancers.

    Built on the Virchow foundation model, cumulatively trained on 1.5M+ slides.

    AI Technology & Services (foundation model licensing: Virchow, Virchow2, Virchow2G, PRISM)AI/ML platform licensing (B2B, biopharma/research)

    data: Licensee's own tissue/slide data used to build custom prognostic/predictive models under license.

    Positioned for biopharma R&D, biomarker discovery, and custom AI development, distinct data-handling profile from the clinical diagnostic suites.

    Paige AlbaAI co-pilot for pathology workflows

    data: Real-time voice/text interaction with case data across diagnostic applications.

    Newest product; integrates the diagnostic and foundation-model technology into a conversational workflow tool.

    Paige PlatformDigital pathology case management / integration layer

    data: Full case/patient data management; WSI scanner and LIS integration; CE-IVD & UKCA marked, FDA-cleared whole-slide viewer.

    Cloud-hosted (reported as Microsoft Azure per Tempus acquisition press release and Microsoft Marketplace listing; not independently confirmed on paige.ai's own domain).

    // What to watch

    • Unresolved contradiction: third-party sources (an NCBI Bookshelf clinical review, aggregator/case-study pages) repeatedly state Paige's 'cloud storage complies with HIPAA...and GDPR,' but this claim could not be located anywhere on paige.ai's current live domain (privacy policy, terms, or product pages), which only confirms ISO 27001. Do not list a HIPAA badge until this is confirmed directly with Paige.
    • A 'Paige Trust Center' (TrustShare/TrustCloud, community.trustcloud.ai/company/paige and paige.trustshare.com) was found but is JS-rendered and could not be fetched or verified for actual certification content; treat as unverified until manually reviewed.
    • Identity-conflation risk: go-paige.com is a DIFFERENT, unrelated consumer 'legacy/estate planning' company also branded 'Paige' with its own distinct (and separately unverified) security page. Any AIFOXX listing must not merge data from go-paige.com into this vendor's profile.
    • Paige AI, Inc. was acquired by Tempus AI, Inc. (NASDAQ: TEM) in August 2025 (~$81.25M); its security/compliance program may be transitioning onto Tempus infrastructure and policy, so this posture should be re-verified periodically post-integration.
    • No public disclosure of whether hospital/lab customer case data is used to further train Paige's foundation models (Virchow/PRISM family), and no AI-training opt-out is described anywhere on the vendor's domain.
    • No SOC 2 report, DPA, or BAA is referenced on the public site; for a healthcare vendor this is commonly shared under NDA with enterprise customers rather than published, but AIFOXX should not represent these as confirmed.

    // At a glance

    Pricing model

    Enterprise B2B contract/licensing per institution (hospitals, labs) or per research/biopharma partnership; no public self-serve pricing.

    Self-hostable

    No

    // How we verified this

    Every certification marked HELD is confirmed against a verbatim quote on Paige AI, Inc. (now a subsidiary of Tempus AI, Inc., NASDAQ: TEM)'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.

    Last verified 2026-07-08. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.

    paige.trustshare.com

    > Browse all vendor trust reports