MediQuex operates with the highest standards of regulatory compliance, ethical research practices, and data security. We are committed to protecting participant privacy, maintaining data integrity, and adhering to all applicable regulations and industry standards.
1 Regulatory & Privacy Compliance
CCPA / CPRA Compliance
MediQuex operates in compliance with the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA). We maintain transparent data collection practices and provide mechanisms for access, correction, and deletion requests in accordance with applicable privacy regulations.
HIPAA Position (No PHI Collection)
MediQuex does not collect, process, or store Protected Health Information (PHI) as defined under HIPAA. Our panel operations focus exclusively on verified healthcare professional credentials and research participation data. No patient-level medical records or clinical treatment data are collected.
Informed Consent & Opt-In
All panelists are recruited through a documented double opt-in process. Participation is voluntary, and respondents may withdraw at any time. Consent language clearly outlines research purpose, data usage, confidentiality safeguards, and incentive transparency.
2 Industry Standards & Research Ethics
ESOMAR Membership
MediQuex holds Corporate Membership with ESOMAR and operates in accordance with the ESOMAR International Code on Market, Opinion and Social Research and Data Analytics.
EphMRA Alignment
While MediQuex is not currently a member of EphMRA, we operate in alignment with the EphMRA Code of Conduct for pharmaceutical market research.
We maintain:
- A documented Fair Market Value (FMV) honoraria framework
- Transparent consent and disclosure standards
- A strict No-PHI data policy
- Documentation is available upon request
Fair Market Value (FMV) Policy
MediQuex follows a structured FMV framework to ensure incentives reflect appropriate market compensation levels and align with industry ethical standards.
NPI & Credential Verification
All U.S. healthcare professionals in our panel undergo multi-step verification, including:
- National Provider Identifier (NPI) validation
- License verification against state boards
- Credential cross-checking
- Periodic re-validation
3 Information Security & Data Protection
SOC 2–Aligned Security Controls
MediQuex maintains security controls aligned with SOC 2 principles, including role-based access management, encryption in transit and at rest, audit logging, vendor security review, and incident response procedures. Security documentation can be shared under NDA.
ISO 27001–Aligned Framework
MediQuex maintains information security policies and controls aligned with ISO/IEC 27001 standards, covering access management, encryption, risk assessment, incident management, and vendor security governance.
Documentation & Policies
Detailed compliance, privacy, and security documentation is available to clients under NDA.
Questions About Our Compliance?
For detailed information about our compliance certifications, security practices, or to request documentation, please contact us: