Healthcare Infrastructure for Institutional Deployment
Building the foundation for controlled global AI collaboration
MedSyntra is a healthcare infrastructure provider operating across multiple jurisdictions, enabling sovereign AI deployment at national and institutional level.Â
MedSyntra delivers a healthcare AI infrastructure layer that enables institutions and governments to activate medical data within controlled environments, without data movement or ownership transfer.
The platform is designed for regulated environments, providing access to AI capabilities through institutional licensing, defined governance, and secure in-country deployment architectures.
Our Vision
To establish a global standard for healthcare AI infrastructure, where data remains under institutional control and governed through defined access and compliance frameworks.
Corporate Structure & Jurisdiction
MedSyntra operates through a structured international legal and regulatory framework supporting institutional deployment and jurisdictional compliance across all operating regions.
The company is incorporated as MedSyntra Inc. (United States, Delaware) under file number 10558871, serving as the central legal and governance entity for global operations.
In Saudi Arabia, MedSyntra operates through a locally licensed entity under MISA (Ministry of Investment of Saudi Arabia), enabling regulated national-level deployment and institutional engagement in alignment with Saudi regulatory frameworks.
The operating structure supports national jurisdictional compliance, ensuring that all deployments align with local data governance laws, regulatory authorities and healthcare-specific requirements.
Where applicable, MedSyntra maintains or establishes regional presence within Europe and other international jurisdictions to support regulatory alignment, institutional partnerships and cross-border governance requirements.
Governance Architecture
MedSyntra operates as an infrastructure layer where all data access, usage, and AI interaction are governed through structured policy, audit, and authorization frameworks.
The platform operates under a federated governance model, ensuring that data remains within national or institutional boundaries while enabling controlled, permission-based access to AI capabilities.
Access Control & Authorization
All data access is governed through role-based and policy-driven authorization frameworks, ensuring that institutions retain full control over who can access, process, and interact with data at every layer.
Audit Logging & Traceability
Every interaction with data is fully logged, traceable, and auditable, providing institutions with complete visibility over usage, access patterns, and system activity in real time.
Data Flow Governance
Data is never exported or transferred outside its originating environment. All processing occurs within secure, in-country infrastructure environments, aligned with national regulatory requirements and institutional policies.
Incident Control & Oversight
The platform includes structured mechanisms for incident response, access revocation, and policy enforcement, ensuring rapid containment and governance continuity across all operational scenarios.
Compliance & Oversight
MedSyntra operates within defined national and international healthcare data governance frameworks, ensuring regulatory compliance across all deployment jurisdictions.
MedSyntra aligns with international data protection and healthcare compliance frameworks, including:
GDPR (Europe)
HIPAA (United States)
National data protection regulations
Oversight is ensured through audit-ready infrastructure, access control mechanisms, and governance frameworks designed for institutional environments.
Regulatory Alignment
Company Foundation MedSyntra Inc. is incorporated as a Delaware C-Corporation, serving as the central legal and intellectual property holding entity. Its corporate structure is designed to support institutional infrastructure implementation, national health operators and international regulatory requirements.
Compliance by Design The platform is aligned with GDPR, NIS2, HIPAA and HL7/FHIR requirements, embedded at infrastructure level before deployment and not added as post-deployment overlays.
Institutional Readiness MedSyntra is structured for institutional governance and compliance-led infrastructure implementation across European and international jurisdictions, with jurisdiction-specific compliance documentation available for review.
Operational Compliance Framework
All deployments operate within structured compliance controls, including:
Audit-ready infrastructure and logging mechanisms
Access control and identity governance policies
Regulated data access environments
Full visibility over data usage and system interaction
Licence-based infrastructure model governing deployment terms, data access and long-term agreements
Saudi Arabia & Strategic Expansion
MISA-licensed operations in Saudi Arabia
Aligned with Vision 2030 initiatives
Ongoing institutional engagements and pilot discussions at national level
Saudi Arabia & Strategic Expansion
MedSyntra is MISA licensed and has established a presence in Saudi Arabia, supporting local deployment, institutional engagement, and regulatory alignment.
The company’s infrastructure model aligns with Vision 2030 initiatives in healthcare, artificial intelligence, and digital infrastructure.
Leadership & Strategic Governance
Leadership and governance are structured to support institutional decision-making, regulated deployment environments and regulatory oversight across jurisdictions.
Executive Leadership
MedSyntra’s executive leadership is responsible for strategic direction, governance oversight, and institutional execution across regulated healthcare environments.
Asta Ratkeviciene
FOUNDER & CHIEF EXECUTIVE OFFICER
Asta Ratkeviciene built MedSyntra around a single, inconvenient truth: the most consequential infrastructure gap of our time is not energy, connectivity, or transport – it is the absence of a sovereign layer through which nations can govern, protect, and act on their own health data.Â
She founded MedSyntra to close that gap. Not as an application. Not as a product. As infrastructure. With 15 years leading complex international projects – and a track record of building innovation alongside leading scientists across the US, Europe, and the MENA region – Asta brings the strategic depth and institutional credibility that sovereign-scale infrastructure demands.
Christoph Coetzee
CO-FOUNDER & CHIEF INFORMATION OFFICER
Christoph Coetzee is the Co-Founder and Chief Information Officer of MedSyntra, where he holds executive responsibility for platform architecture, systems integration, and secure healthcare data infrastructure across sovereign deployment environments.
Christoph graduated cum laude from the University of South Africa with a specialisation in Information Resource Management, further strengthening his systems-oriented approach to healthcare data governance, architecture, and long-term information stewardship.
With nearly two decades of experience in medical imaging informatics and healthcare IT, Mr Coetzee has built his career at the convergence of clinical data governance, enterprise interoperability, and cloud-native infrastructure design, spanning DICOM imaging workflows, HL7 standards, cybersecurity frameworks, and vendor-neutral platform development.
He leads MedSyntra’s development teams delivering imaging data pipelines, secure deidentification infrastructure, and AI-ready data orchestration across deployments in Europe, the Middle East, and the United States.
Dr. Matteo Turi
Chief Financial Officer
Dr. Turi brings over 30 years of capital markets and deep technology finance experience to MedSyntra, having structured over £480M in equity and debt financing across biotech and innovation-driven companies. As CFO, he leads MedSyntra’s financial architecture across the company’s multi-jurisdictional operating structure, overseeing capital strategy, investor relations, and the structural integrity of its parallel market deployment.
Dr. Turi is the creator of the High Valuation Triangle framework, a capital efficiency methodology that translates complex deep technology into fundable, scalable business models – directly applied to MedSyntra’s sovereign infrastructure growth strategy.
Board of Directors
The Board of Directors provides oversight on corporate governance, risk management, and long-term institutional positioning.
George Syrmalis
NON-EXECUTIVE DIRECTOR, STRATEGY AND CAPITAL
Dr. George Syrmalis serves as Non-Executive Director at MedSyntra, bringing more than three decades of physician-scientist expertise, entrepreneurial leadership, and capital markets experience across the biotechnology and medical technology sectors.Â
He has led more than ten initial public offerings across NASDAQ, the Australian Securities Exchange, and principal European exchanges, and has structured growth-stage capital raises syndicated to sovereign and quasi-sovereign investors across the Gulf and Asia. At MedSyntra, Dr. Syrmalis provides strategic direction on capital structure, investor positioning, and institutional partnership development across global healthcare markets.
Medical & Clinical Governance
Dr. Jack W. Bergman
Chief Medical
Officer Ensures clinical alignment, medical data integrity, and healthcare-specific governance.
Institutional Engagement Process
MedSyntra follows a structured engagement model designed to support sovereign and institutional deployments from initial assessment to full-scale implementation.
1. Institutional briefing
Initial alignment with government or institutional stakeholders to define objectives, scope, and regulatory context.
2. Scope definition and alignment
Technical, operational, and governance requirements are defined in alignment with national and institutional frameworks.
3. Pilot deployment setup
Implementation of initial infrastructure across selected institutions to validate integration, workflows, and governance.
4. Infrastructure scale and expansion
Progressive rollout across additional institutions, enabling full-scale sovereign infrastructure deployment.
Company Development & Institutional Milestones
MedSyntra has been structured to support institutional deployment, regulatory alignment and infrastructure development in regulated healthcare environments across international healthcare ecosystems.
Foundation & Structure
Establishment of MedSyntra Inc. (United States) as the central legal entity
Development of a regulated healthcare AI infrastructure model
Formation of governance, compliance and deployment frameworks
Regulatory & Market Alignment
Alignment with international healthcare regulatory frameworks
Structuring for institutional governance and compliance-led deployment
Expansion readiness across Europe and international jurisdictions
Institutional Engagement & Deployment
Structured institutional engagement frameworks
Development of AI-ready data environments and governance architecture
Preparation for institutional-scale deployment and infrastructure rollout
Regulatory & Compliance Disclosures
MedSyntra operates within defined legal and regulatory frameworks. The following disclosures provide transparency on entity structure, compliance and data governance.
MedSyntra Inc. is a Delaware C-Corporation incorporated under the laws of the State of Delaware, United States. The company's principal operations are based in Lithuania, European Union.
MedSyntra is a sovereign health data infrastructure provider. Its platform enables secure, compliant, permission-based health data exchange across national healthcare systems. MedSyntra does not engage in clinical diagnosis, automated medical decision-making, or medical device manufacturing.
As such, the following frameworks do not apply to MedSyntra's current platform scope: EU Medical Device Regulation (EU MDR 2017/745), ISO 13485, IEC 62304, or EU AI Act high-risk AI system provisions.
MedSyntra operates across multiple jurisdictions, with primary operations in the European Union (Lithuania) and active market development in international markets.
All cross-border transfers of personal health data are governed by applicable legal mechanisms, including:
Standard Contractual Clauses (SCCs) under GDPR Article 46 for transfers to third countries
Bilateral Data Processing Agreements with sovereign health authorities
Local data residency requirements where mandated by national health authority frameworks
MedSyntra's infrastructure is designed to support sovereign data residency by default, enabling deployment models where health data does not leave national borders.
MedSyntra processes personal data subject to Regulation (EU) 2016/679 (GDPR). Depending on deployment context, MedSyntra acts as a data controller, data processor, or joint controller. Applicable obligations include:
Lawful basis documentation for all health data processing activities (Article 6 & 9)
Data Protection Impact Assessments (DPIAs) for high-risk processing scenarios
Records of Processing Activities (RoPA) maintained under Article 30
Data Subject Rights fulfilment: access, erasure, portability, restriction, and objection
Appointment of a Data Protection Officer (DPO) where applicable
MedSyntra is subject to NIS2 Directive obligations as an operator within the health sector digital infrastructure category. Incident reporting, risk management, and supply chain security obligations are addressed within MedSyntra's information security management programme.
Where MedSyntra's platform infrastructure is deployed in connection with US-based covered entities or their business associates, MedSyntra operates in accordance with the Health Insurance Portability and Accountability Act (HIPAA) Security and Privacy Rules.
Business Associate Agreements (BAAs)Â are available upon request for qualifying deployments
Technical safeguards include encryption at rest and in transit, access controls, and audit logging
Administrative and physical safeguard policies are documented and maintained
HIPAA applicability is assessed on a per-deployment basis. Clients with US regulatory exposure are encouraged to contact MedSyntra to initiate a BAA review.
MedSyntra enters into Data Processing Agreements (DPAs) with all clients and sub-processors handling personal health data. DPAs are available in standard form and may be adapted to reflect jurisdiction-specific requirements, including:
HL7/FHIR R4-aligned data exchange and interoperability protocols
National health authority data governance frameworks
Sovereign data residency and data localisation obligations
Sector-specific retention and deletion schedules
A current list of authorised sub-processors is maintained and made available upon request. Clients are notified of material sub-processor changes in advance, with the right to object.
MedSyntra's infrastructure is designed and operated in alignment with recognised international security standards. Current certification and compliance status:
Framework / Standard
Status
Notes
HL7 FHIR R4
Architecture Compliant
Core data exchange layer built on FHIR R4
GDPR Article 32
Implemented
Technical & organisational measures in place
NIS2 Directive
In Review
Active compliance programme underway
ISO/IEC 27001
Roadmap — Year 1
Target certification aligned with Series A milestones
SOC 2 Type II
Roadmap — Year 2
Planned for US market expansion phase
Certification timelines are subject to audit scheduling and may be updated as the company progresses through its operational milestones.
Full compliance documentation is available upon request.
Engage with MedSyntra
Building the Future of Sovereign Healthcare AI
MedSyntra engages with governments, healthcare institutions, and enterprise organizations to support secure and compliant healthcare AI infrastructure deployment.
