Nabla Copilot

AI medical scribe that turns patient conversations into clinical notes

Suki AI

US AI clinical documentation assistant for physicians using voice and ambient AI

Nabla Copilot

Excellent

22/25

Suki AI

Caution

9/25

Score Breakdown

DimensionNabla CopilotSuki AI

Data Residency

Where is your data stored and processed?

Nabla Copilot: Choice of US (AWS us-east-1) or EU (AWS eu-west-1) data hosting. French HDS certification for health data in the EU. Strong dual-region residency for healthcare organisations on both sides of the Atlantic.

Suki AI: US-only infrastructure; no EU data residency option; patient voice data processed in the US

4/5

Choice of US (AWS us-east-1) or EU (AWS eu-west-1) data hosting. French HDS certification for health data in the EU. Strong dual-region residency for healthcare organisations on both sides of the Atlantic.

1/5

US-only infrastructure; no EU data residency option; patient voice data processed in the US

Legal Jurisdiction

Which laws govern the company and your data?

Nabla Copilot: Incorporated in France under French and EU law, benefiting from GDPR-native jurisdiction and the French Health Data Hosting (HDS) regulatory framework. US operations covered by HIPAA BAA.

Suki AI: US Delaware corporation; CLOUD Act applies to sensitive patient data; HIPAA-focused, not GDPR-optimised

4/5

Incorporated in France under French and EU law, benefiting from GDPR-native jurisdiction and the French Health Data Hosting (HDS) regulatory framework. US operations covered by HIPAA BAA.

1/5

US Delaware corporation; CLOUD Act applies to sensitive patient data; HIPAA-focused, not GDPR-optimised

Data Retention & Training

Is your data used for model training?

Nabla Copilot: Patient audio processed transiently and not stored by default. No use of patient data for model training. Configurable note retention aligned with EHR data governance policies.

Suki AI: Opt-out from model training available; patient data retention governed by HIPAA; GDPR controls unclear

5/5

Patient audio processed transiently and not stored by default. No use of patient data for model training. Configurable note retention aligned with EHR data governance policies.

3/5

Opt-out from model training available; patient data retention governed by HIPAA; GDPR controls unclear

Certifications

ISO 27001, SOC 2, Cyber Essentials, etc.

Nabla Copilot: SOC 2 Type II certified; HIPAA BAA available; HDS certified in France. ISO 27001 in progress. Strong healthcare-specific compliance posture for a company of its size.

Suki AI: SOC 2 Type II and HIPAA compliant; ISO 27001 not confirmed; no EU-specific certifications

4/5

SOC 2 Type II certified; HIPAA BAA available; HDS certified in France. ISO 27001 in progress. Strong healthcare-specific compliance posture for a company of its size.

3/5

SOC 2 Type II and HIPAA compliant; ISO 27001 not confirmed; no EU-specific certifications

Regulatory Fit

Suitability for regulated industries and professional services

Nabla Copilot: Exceptional fit for healthcare providers. HIPAA BAA, HDS certification, GDPR-native jurisdiction, and no patient data training make it one of the most compliant AI scribing tools available.

Suki AI: Not suitable for EU patient data processing without major bespoke contractual and infrastructure changes

5/5

Exceptional fit for healthcare providers. HIPAA BAA, HDS certification, GDPR-native jurisdiction, and no patient data training make it one of the most compliant AI scribing tools available.

1/5

Not suitable for EU patient data processing without major bespoke contractual and infrastructure changes

Total Score

22/25

9/25

Best For

Nabla Copilot

Best for EU-headquartered organisations needing maximum data sovereignty; organisations requiring broad certification coverage (SOC 2 Type II, HIPAA BAA, HDS); regulated industries (HHS OCR, CNIL); privacy-conscious teams who need strong data retention controls.

Suki AI

Best for teams that prioritise data retention & training (scores 3/5) and need a review required-tier tool.

Detailed Comparison

Nabla Copilot vs Suki AI: Trust & Compliance Comparison

Nabla Copilot (Nabla, FR) scores 22/25 overall with a Gold (Excellent) trust badge. AI medical scribe that turns patient conversations into clinical notes. Suki AI (Suki AI, US) scores 9/25 with a Review Required (Caution) trust badge. US AI clinical documentation assistant for physicians using voice and ambient AI.

Dimension-by-Dimension Breakdown

#### Data Residency

Nabla Copilot leads with 4/5 vs 1/5.

●Nabla Copilot (4/5): Choice of US (AWS us-east-1) or EU (AWS eu-west-1) data hosting. French HDS certification for health data in the EU. Strong dual-region residency for healthcare organisations on both sides of the Atlantic.

●Suki AI (1/5): US-only infrastructure; no EU data residency option; patient voice data processed in the US

#### Legal Jurisdiction

Nabla Copilot leads with 4/5 vs 1/5.

●Nabla Copilot (4/5): Incorporated in France under French and EU law, benefiting from GDPR-native jurisdiction and the French Health Data Hosting (HDS) regulatory framework. US operations covered by HIPAA BAA.

●Suki AI (1/5): US Delaware corporation; CLOUD Act applies to sensitive patient data; HIPAA-focused, not GDPR-optimised

#### Data Retention & Training

Nabla Copilot leads with 5/5 vs 3/5.

●Nabla Copilot (5/5): Patient audio processed transiently and not stored by default. No use of patient data for model training. Configurable note retention aligned with EHR data governance policies.

●Suki AI (3/5): Opt-out from model training available; patient data retention governed by HIPAA; GDPR controls unclear

#### Certifications

Nabla Copilot leads with 4/5 vs 3/5.

●Nabla Copilot (4/5): SOC 2 Type II certified; HIPAA BAA available; HDS certified in France. ISO 27001 in progress. Strong healthcare-specific compliance posture for a company of its size.

●Suki AI (3/5): SOC 2 Type II and HIPAA compliant; ISO 27001 not confirmed; no EU-specific certifications

#### Regulatory Fit

Nabla Copilot leads with 5/5 vs 1/5.

●Nabla Copilot (5/5): Exceptional fit for healthcare providers. HIPAA BAA, HDS certification, GDPR-native jurisdiction, and no patient data training make it one of the most compliant AI scribing tools available.

●Suki AI (1/5): Not suitable for EU patient data processing without major bespoke contractual and infrastructure changes

Certifications at a Glance

Certification	Nabla Copilot	Suki AI
HDS	Yes	No
HIPAA	No	Yes
HIPAA BAA	Yes	No
SOC 2 Type II	Yes	Yes

Overall Verdict

Nabla Copilot has a clear trust advantage, scoring 22/25 compared to Suki AI's 9/25. Nabla Copilot particularly excels in data residency, legal jurisdiction, data retention & training, certifications, regulatory fit.

Frequently Asked Questions

Which is better for EU compliance, Nabla Copilot or Suki AI?

Nabla Copilot has a TrustKit score of 22/25 while Suki AI scores 9/25. Nabla Copilot currently rates higher across data residency, legal jurisdiction, data retention, certifications, and regulatory fit.

How do Nabla Copilot and Suki AI compare on data residency?

Nabla Copilot scores 4/5 for data residency (Choice of US (AWS us-east-1) or EU (AWS eu-west-1) data hosting. French HDS certification for health data in the EU. Strong dual-region residency for healthcare organisations on both sides of the Atlantic.), while Suki AI scores 1/5 (US-only infrastructure; no EU data residency option; patient voice data processed in the US).

Are Nabla Copilot and Suki AI GDPR compliant?

Both tools are assessed across five compliance dimensions. Nabla Copilot has a regulatory fit score of 5/5 and Suki AI scores 1/5. Check the full comparison above for a detailed breakdown.

Explore Each Tool