// Trust & Security Report
Paige AI, Inc. (now a subsidiary of Tempus AI, Inc., NASDAQ: TEM)
Computational pathology / cancer-diagnostic AI platform: FDA-cleared diagnostic AI suites (Prostate, Breast, GI, PanCancer), licensable foundation models (Virchow, Virchow2, Virchow2G, PRISM) for biopharma R&D, the Paige Alba multimodal AI co-pilot, and the Paige Platform for digital-pathology case management/integration.
Certifications held
2
Maturity
Enterprise
Trains on your data
Unknown
Trust center
Yes
// Certification ledger
Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.
Verify on paige.ai“Our security measures are evaluated by a qualified third party annually as part of maintaining our ISO 27001 certification.”
Verify on paige.ai“Policy details EU data-subject rights consistent with GDPR (access, correction/rectification, deletion, restriction of processing, and data portability) and lists a designated Data Protection Officer for Paige.AI, Inc.”
> Show 7 unconfirmed / not-held certifications
source: paige.aiNo public evidence: SOC 2 is not mentioned anywhere on paige.ai's privacy policy, terms & conditions, or product pages, and no independent SOC 2 report reference was found.
source: paige.aiNo public evidence on the vendor's own domain. paige.ai's Terms & Conditions state only: 'you should not include confidential information about you...or information about your health status' in communications; the Privacy Policy states 'Provider Customers are primarily responsible' for patient health information and makes no HIPAA compliance claim. A HIPAA/GDPR 'cloud storage compliance' claim is attributed to Paige only by third-party sources (e.g., an NCBI Bookshelf clinical review), not by paige.ai itself.
source: paige.aiNo public evidence found on vendor domain or via search of an ISO 42001 certification, despite Paige being a foundation-model AI company.
source: paige.aiNo public evidence found; not applicable based on known customer base (hospitals, labs, biopharma), no federal-government-specific offering identified.
source: paige.aiNo public evidence found; not applicable, Paige does not appear to process cardholder payment data directly as part of its clinical/enterprise product.
source: paige.aiNo public evidence found; only the base ISO 27001 certification is referenced on the vendor's own domain.
// Privacy & AI training
Trains on customer data
Not stated
Data processing agreement
Not offered
Data region
United States primary ("stored in the United States by us and/or our business partners"); some cookie-derived data may be stored outside the U.S.; GDPR rights are extended to EU data subjects, implying some EU data handling capability.
Homepage states foundation models (Virchow/PRISM family) are 'cumulatively trained on over 1.5 million slides,' but no page states whether case data submitted by hospital/lab Provider Customers through the Paige Platform is used to further train models, and no opt-out mechanism is described. This is a real gap for enterprise buyers evaluating AI-training posture.
// Security controls
Information security certification
ISO 27001 certified, with security measures evaluated by an independent third party annually.
paige.aiAccess controls
Company states it takes 'technical, administrative, and physical measures reasonably necessary to restrict access to Personal Information to authorized individuals.'
paige.aiThird-party/vendor security requirements
Business partners receiving Personal Information are contractually required to use 'substantially the same level of security measures.'
paige.aiData Protection Officer
A named Data Protection Officer for Paige.AI, Inc. is listed with contact address and email.
paige.aiEncryption in transit / at rest
n/a: not explicitly specified in any vendor-domain document found; no public statement on encryption standards.
paige.ai// Products & data scope
data: Whole-slide H&E images of prostate needle biopsies; patient case data within hospital/lab workflow.
Assists detection, diagnosis and grading of prostate cancer.
data: Whole-slide H&E images from breast biopsy/excision specimens.
Supports identification/classification of breast cancer.
data: Whole-slide images across the gastrointestinal tract.
Detects benign and malignant GI conditions; built on newer foundation-model technology.
data: Whole-slide images across many tissue types, including rare cancers.
Built on the Virchow foundation model, cumulatively trained on 1.5M+ slides.
data: Licensee's own tissue/slide data used to build custom prognostic/predictive models under license.
Positioned for biopharma R&D, biomarker discovery, and custom AI development, distinct data-handling profile from the clinical diagnostic suites.
data: Real-time voice/text interaction with case data across diagnostic applications.
Newest product; integrates the diagnostic and foundation-model technology into a conversational workflow tool.
data: Full case/patient data management; WSI scanner and LIS integration; CE-IVD & UKCA marked, FDA-cleared whole-slide viewer.
Cloud-hosted (reported as Microsoft Azure per Tempus acquisition press release and Microsoft Marketplace listing; not independently confirmed on paige.ai's own domain).
// What to watch
- Unresolved contradiction: third-party sources (an NCBI Bookshelf clinical review, aggregator/case-study pages) repeatedly state Paige's 'cloud storage complies with HIPAA...and GDPR,' but this claim could not be located anywhere on paige.ai's current live domain (privacy policy, terms, or product pages), which only confirms ISO 27001. Do not list a HIPAA badge until this is confirmed directly with Paige.
- A 'Paige Trust Center' (TrustShare/TrustCloud, community.trustcloud.ai/company/paige and paige.trustshare.com) was found but is JS-rendered and could not be fetched or verified for actual certification content; treat as unverified until manually reviewed.
- Identity-conflation risk: go-paige.com is a DIFFERENT, unrelated consumer 'legacy/estate planning' company also branded 'Paige' with its own distinct (and separately unverified) security page. Any AIFOXX listing must not merge data from go-paige.com into this vendor's profile.
- Paige AI, Inc. was acquired by Tempus AI, Inc. (NASDAQ: TEM) in August 2025 (~$81.25M); its security/compliance program may be transitioning onto Tempus infrastructure and policy, so this posture should be re-verified periodically post-integration.
- No public disclosure of whether hospital/lab customer case data is used to further train Paige's foundation models (Virchow/PRISM family), and no AI-training opt-out is described anywhere on the vendor's domain.
- No SOC 2 report, DPA, or BAA is referenced on the public site; for a healthcare vendor this is commonly shared under NDA with enterprise customers rather than published, but AIFOXX should not represent these as confirmed.
// At a glance
Pricing model
Enterprise B2B contract/licensing per institution (hospitals, labs) or per research/biopharma partnership; no public self-serve pricing.
Self-hostable
No
// How we verified this
Every certification marked HELD is confirmed against a verbatim quote on Paige AI, Inc. (now a subsidiary of Tempus AI, Inc., NASDAQ: TEM)'s own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.
Last verified 2026-07-08. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.
paige.trustshare.com