What DICOM services are supported?

Full C-STORE (receive and send), C-ECHO (verification), C-FIND (query at Study/Series/Instance level), and C-MOVE (retrieve). DICOMweb API provides QIDO-RS and WADO-RS for web access.

How does AI integration work?

DICOM Router uses a callback pattern: it sends files to your AI container via HTTP, then receives results via a secure callback with HMAC signature verification. AI can return classification tags that trigger conditional routing rules.

DICOM Router runs as a single Go binary or Docker container within your infrastructure. The only dependency is PostgreSQL for job tracking and configuration. Deploy in minutes with docker-compose.

Is it HIPAA compliant?

Yes. Self-hosted deployment within your secure network, comprehensive audit logging (who/when/what), JWT authentication, AES-256-GCM encrypted secrets, TLS support, and no PHI in logs.

Can I integrate with OHIF Viewer?

Yes! The built-in DICOMweb API (QIDO-RS, WADO-RS) is compatible with OHIF Viewer v3+. Configure OHIF to use DICOM Router as a data source for browser-based image viewing.

What destinations are supported?

DICOM nodes (any PACS via C-STORE), S3-compatible storage (AWS S3, MinIO, Wasabi), and file systems (local or NFS). Each destination has health monitoring and connectivity tests.

How does routing work?

Define rules with AE Title patterns, modality filters, source type (external/AI output), and tag conditions. Rules are evaluated by priority. Matching studies go to all destinations in the rule.

What happens if a destination is down?

Failed transfers retry automatically with exponential backoff (30s → 30m max). Per-destination tracking shows exactly which transfers succeeded or failed. The dashboard alerts you to unhealthy destinations.

DICOM Router - Enterprise Medical Image Routing with AI Integration

Name: DICOM Router
Author: AK Labs

1. Introduction

AK Labs ("we", "our", or "us") respects your privacy and is committed to protecting your personal data. This privacy policy explains how we collect, use, and protect your information when you use our DICOM Router software and related services.

2. Information We Collect

2.1 Information You Provide

Contact information (name, email, company name) when you schedule a demo or contact us
Account information when you register for our services
Payment information (processed securely through third-party payment processors)
Communications when you contact our support team

2.2 Self-Hosted Software

DICOM Router is self-hosted software that runs on your own infrastructure. We do not have access to:

DICOM medical images or patient data processed by the software
Your routing rules, destinations, or configuration
Any data stored in your local database

2.3 Usage Analytics (Optional)

If you opt-in, we may collect anonymized usage statistics to improve the software. This data does not include any PHI (Protected Health Information) or patient data.

3. How We Use Your Information

To provide and maintain our services
To process your license purchases and payments
To send you important updates about the software
To provide technical support
To improve our software and services
To comply with legal obligations

4. HIPAA Compliance and Our Role

4.1 Not a Business Associate

WE ARE NOT A "BUSINESS ASSOCIATE" UNDER HIPAA. As a self-hosted solution, the Software runs entirely on your infrastructure. We do not access, store, process, or transmit any Protected Health Information (PHI) or electronic Protected Health Information (ePHI).

We will not sign Business Associate Agreements (BAAs). You are the sole data controller and are responsible for all HIPAA compliance requirements in your deployment.

4.2 Your HIPAA Responsibilities

You maintain full control over your data and are solely responsible for HIPAA compliance in your environment. The Software includes features that may support HIPAA compliance efforts:

Audit logging capabilities for PHI access tracking
Support for encrypted data transmission (TLS/SSL)
Access controls and authentication mechanisms
Configurable data retention policies

However, proper configuration, security measures, and compliance procedures are your responsibility. The presence of these features does not guarantee HIPAA compliance.

4.3 No Liability for Data Breaches

WE ARE NOT RESPONSIBLE FOR ANY DATA BREACHES, UNAUTHORIZED ACCESS, OR SECURITY INCIDENTS INVOLVING YOUR SELF-HOSTED DEPLOYMENT. You are solely responsible for:

Securing your servers, networks, and infrastructure
Implementing and maintaining appropriate security controls
Monitoring for and responding to security incidents
Notifying affected individuals and authorities as required by law
Bearing all costs associated with data breach remediation

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

Encryption of data in transit and at rest
Regular security assessments
Access controls and authentication
Secure software development practices

6. Third-Party Services

We use the following third-party services:

Cal.com for scheduling demos
Payment processors (Stripe) for license purchases
Email service providers for communications

These services have their own privacy policies and handle data according to their terms.

7. Your Rights

You have the right to:

Access your personal data
Correct inaccurate data
Request deletion of your data
Object to processing of your data
Request data portability
Withdraw consent at any time

8. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy, or as required by law. License and payment records are kept for accounting and legal compliance purposes.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers.

10. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes via email or through our software.

12. Contact Us

If you have questions about this privacy policy or our data practices, please contact us:

Email: contact@aklabs.dev
Address: Seoul, South Korea

Privacy Policy