Bavel

Virtual Research Room -VRRResearch without centralising data.Governed inside the hospital.

Harmonises and orchestrates standardised clinical datasets

Models travel to the data, not the other way around.

Bavel Health Virtual Research Room (VRR) is a sovereign, federated research environment that enables hospitals, researchers, pharmaceutical companies, and AI developers to securely access and analyse real-world clinical data without patient records ever leaving the institution. Operating entirely within hospital-controlled infrastructure, either on-premise or in a sovereign cloud, the VRR provides a secure processing environment fully aligned with GDPR, EHDS, HIPAA, and other regulatory frameworks.

Regulated as a Hospital Extension

The Virtual Research Room operates entirely within hospital-controlled infrastructure, either on-premise or within sovereign cloud environments, enabling institutions to participate in AI, clinical research, and real-world evidence generation without surrendering control of patient data.

  • De-identified encrypted standard datasets
  • No raw-data exports
  • Queries and computation run where the data lives
  • Registered users and cryptographic research activity logs
  • GDPR, EHDS, and HIPAA compliant by design

Sovereign federated research infrastructure

Searches, analytical workflows, and AI models operate directly on encrypted and standardised datasets inside each institution. No patient raw data leaves institutional boundaries.

The VRR enables:

  • Federated learning
  • Multi-centre clinical research
  • Cross-border real-world evidence generation
  • Privacy-preserving AI development
  • Secure secondary use of health data
  • Natural language interaction with governed datasets

Full accountability. For everyone.

Every action inside the VRR is captured in a tamper-proof cryptographic activity registry.

Every:

  • query
  • model execution
  • researcher interaction
  • dataset access request
  • computation event

is recorded, timestamped, and attributed to a registered and verified identity.

Nothing happens inside the environment without a trace.

Cryptographic research activity log governed by dual keys on blockchain

Dual-Key Sovereign Governance

The activity log is encrypted using two independent governance keys:

  • one held by the hospital as the data provider
  • one held by the patient organisation

No single party can access the audit registry independently.

Regulatory-grade by design

The entire architecture is built for:

  • GDPR
  • EHDS
  • HIPAA
  • EU AI Act readiness

supporting secure secondary use of health data without compromising privacy, governance, or institutional sovereignty.

All researcher and AI activity is immutably logged and cryptographically governed directly at the infrastructure layer.

Built for healthcare reality

Most federated research platforms assume clean, standardised, interoperable datasets. Hospitals rarely operate in that reality. Together, FlexGrid and the VRR harmonise fragmented systems, incompatible protocols, and heterogeneous clinical environments into governed, research-grade infrastructure ready for AI and federated analytics.