Scope: This policy applies to Nested Knowledge employees, sub-contractors, and business partners.
Customers’ Financial Interests #
Nested Knowledge delivers software services to companies engaged in biomedical research, which may include pharmaceutical companies, contract research organizations, academic institutions, and non-profit organizations. The research conducted by our customers may influence the following:
- payer reimbursement for drugs, devices, and other interventions
- regulatory approval of drugs and devices by the FDA
- regulatory approval of drugs and devices by governing bodies outside of the United States
- bids awarded to contract research organizations
- publication success in medical journals
- grants awarded to research investigators
Risk of Corruption #
Nested Knowledge staff provide training to customers, such as teaching customers how to adopt our technology for their active research projects. In such roles, Nested Knowledge staff may learn of customer research, gain access to projects, and influence the research direction.
Nested Knowledge has a duty to to prevent staff from modifying data, to avoid harming research integrity, and to protect the confidentiality of research projects underway. We examine these risks below:
Manipulating Data #
If a customer explicitly grants a Nested Knowledge staff member access to their research projects, there is a risk the staff may manipulate collected data for their personal or financial gain. This includes changing the value of data points or excluding studies. Such behavior will result in instant termination, and if applicable, legal action will be initiated.
Violating Confidentiality and Gathering Intelligence #
A Nested Knowledge staff member may maliciously obtain access to user research projects or user log data. In doing so, the staff member could view protocols, view early research results, download user-uploaded documents, and view membership of an organization. All Nested Knowledge staff sign Non-Disclosure Agreements and receive training on Data Protection and GDPR compliance. Violation of NDAs or security policies will result in disciplinary action.
Compromising Research Integrity #
Nested Knowledge prohibits staff from advising customers on collecting data in a misleading or biased manner, such as encouraging customers to:
- manipulate the search strategy to exclude particular articles
- create overly-selective exclusion criteria
- recommend a meta-analysis of inappropriate study types
- skip the selection of certain endpoints
- compare certain therapies, leaving out other comparators that would be appropriate
- convey numerical difference as statistical difference
- select subgroups inappropriately
Anti-Money Laundering Program #
It is the policy of Nested Knowledge to prevent money laundering and activity that facilitates money laundering by complying with all requirements under applicable legislation or regulation.
Nested Knowledge will not conceal, disguise, convert, or transfer criminal property; enter into an arrangement to facilitate the acquisition, retention, or control of criminal property; or acquire, use, or possess criminal property.
Our procedures and internal controls will be reviewed and updated at least annually, or in response to changes in regulations or changes in our business.
Law Enforcement and Public Agency Data Requests #
Nested Knowledge will comply with all legally obligated disclosures to law enforcement or regulatory bodies. Requests for data disclosure shall be immediately escalated to the Chief Technology Officer and the Information Security Team.
Monitoring and Surveillance #
Nested Knowledge will identify when business activities have changed such that new compliance processes are required for maintaining an effective anti-money laundering program.
Policy Enforcement and Review #
This policy will be updated on an annual basis. This policy will be distributed to all Nested Knowledge employees and contractors, who must review the policy annually. Staff members found in policy violation may be subject to disciplinary action, up to and including termination.
Revision History #
| Author | Date of Revision/Review | Comments |
|---|---|---|
| K. Cowie | 06/26/2026 | Reviewed |
| M. Williams | 06/26/2026 | Revised |
| M. Williams | 12/13/2025 | Revised |
| K. Cowie | 11/05/2024 | Revised |
| K. Cowie | 03/21/2023 | Drafted |
| K. Kallmes | 03/21/2023 | Approved |