{"id":878,"date":"2017-05-19T11:26:45","date_gmt":"2017-05-19T01:26:45","guid":{"rendered":"https:\/\/doseme.com.au\/?page_id=878"},"modified":"2021-04-07T12:56:40","modified_gmt":"2021-04-07T02:56:40","slug":"data-security","status":"publish","type":"page","link":"https:\/\/doseme-rx.com\/de\/data-security","title":{"rendered":"Data Security and DoseMeRX"},"content":{"rendered":"\r\n<div class=\"hero alignfull\">\r\n        <div class=\"hero_overlay  has-background has-purple-gradient-background\"><\/div>\r\n        <div class=\"hero_inner \">\r\n        \n\n<h1 class=\"wp-block-heading\">Data Security and DoseMeRx<\/h1>\n\n\r\n            <\/div>\r\n<\/div>\n\n\n<div class=\"wp-block-group\"><div class=\"wp-block-group__inner-container is-layout-flow wp-block-group-is-layout-flow\">\n<p>DoseMe is committed to maintaining the integrity and security of hospital and patient data. As DoseMeRX and DoseMe (hereafter DoseMe) are a cloud-based offering, we outline here the implications and the steps taken to ensure that any data stored in DoseMe remains secure, and that personal health information remains private.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Ownership of Data<\/h3>\n\n\n\n<p>DoseMe considers all patient data entered by customers to be owned by these customers, and\/or the patient themselves where applicable. DoseMe does license back the use of de-identified patient data entered, so that:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>The DoseMe service can be delivered, monitored, and continually improved.<\/li><li>Healthcare outcomes can be improved, for example, by improving the models in use in DoseMe.<\/li><\/ul>\n\n\n\n<p>DoseMe will generate reports, as well as export data for use in research or otherwise as determined by the owner of the data.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Confidentiality of Patient Data<\/h3>\n\n\n\n<p>DoseMe considers that maintaining the confidentiality of patient data to be of paramount importance. DoseMe accordingly has taken steps in terms of ownership of data, and security of data transmission and storage. We detail these steps below in the section \u201cPractical Data Security and DoseMe\u201d.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Privacy Frameworks<\/h3>\n\n\n\n<p>DoseMe is an Australian-registered company, and complies with the Privacy Act 1988 (Cth), and the Privacy Amendment (Enhancing Privacy Protection) Act 2012 as outlined in&nbsp;the DoseMe&nbsp;<a href=\"https:\/\/doseme.com.au\/privacy-policy\">privacy policy<\/a>.<\/p>\n\n\n\n<p>DoseMe also complies with the EU General Data Protection Regulation (GDPR), 2016\/679.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Overseas Storage of Data<\/h3>\n\n\n\n<p>In order to comply with these laws and directives, DoseMe is committed to storing data in the jurisdiction in which it is owned. For Europe, all data is stored in Microsoft Azure datacentres held within the EU.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Practical Data Security and DoseMe<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Data Transmission and Security<\/strong><\/h4>\n\n\n\n<p>DoseMe uses a 2048 bit SSL certificate, issued by Comodo\u2019s Certificate Authority. This is the same strength encryption as banks use. SSL certificates issued by a Certificate Authority provide two main benefits:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>All data in transit is encrypted.<\/li><li>The identity of the server (and organisation) to which you are communicating is verified.<\/li><\/ul>\n\n\n\n<p>DoseMe also regularly benchmarks the performance of its encryption against current best practices to ensure that any changes in best practice (e.g. such as disabling SSL3.0) are rapidly applied. At the time of writing, DoseMe achieved an \u201cA\u201d grade for security by the industry-standard SSL grading site, SSL Labs.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Mobile Devices<\/strong><\/h4>\n\n\n\n<p>All communication to and from our mobile devices are encrypted, and the endpoint to which the DoseMe App communicates is verified as being owned by DoseMe.<\/p>\n\n\n\n<p>Any data cached on the device for the purposes of displaying and using DoseMe is encrypted.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Web Access<\/strong><\/h4>\n\n\n\n<p>All web access to DoseMe occurs over secured (via SSL) channels only. This can be verified by the presence of the padlock in your web-browser. All content, whether patient-identifying data, or the DoseMe logo is transmitted over encrypted channels.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Hosting and Physical Security<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>DoseMe in the \u201cCloud\u201d (Microsoft Azure)<\/strong><\/h4>\n\n\n\n<p>DoseMe uses Microsoft Azure (Azure) as its hosting service. Using Azure provides several benefits, including:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>The use of a facility audited to data security and healthcare standards,<\/li><li>The use of a facility already in use by major pharmaceutical companies, and government healthcare authorities.<\/li><\/ul>\n\n\n\n<p>Azure has multiple sites across the world, giving DoseMe the ability to store data in the same legal jurisdiction as where it has been generated. Azure has a wide range of leading hospitals and health services, including NHS England and Dartmouth-Hitchcock Medical Center.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>Azure Standards, Auditing, and Accreditation<\/strong><\/h4>\n\n\n\n<p>Azure is compliant and audited to relevant quality, data security, and healthcare standards. These include:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>HIPAA (Healthcare, Personal Health Information)<\/li><li>ISO 9001 (Quality Systems)<\/li><li>ISO 27001 (Information Security)<\/li><li>ISO 27018 (Information Security for Cloud)<\/li><li>SOC 1-3 (Organisation Controls)<\/li><li>PCI DSS (Security, Financial)<\/li><li>UK G-Cloud (Certified by UK government for UK OFFICIAL data storage)<\/li><li>National Health Service Information Governance (UK Patient data confidentiality)<\/li><\/ul>\n\n\n\n<p>Azure is regularly audited to these <a href=\"https:\/\/www.microsoft.com\/en-us\/trustcenter\/compliance\/complianceofferings\">standards<\/a>, and can provide further information upon request.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>DoseMe as Local Infrastructure<\/strong><\/h4>\n\n\n\n<p>For enterprise customers who have an absolute requirement of local, on-premise storage of patient data, DoseMe could deploy either a hybrid-cloud, or fully in-house deployment DoseMe, however, recommends against this style of deployment, as Microsoft Azure typically provides both a high-availability and a significantly higher security hosting environment than most corporate datacentres.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>DoseMe and Physical Servers<\/strong><\/h4>\n\n\n\n<p>DoseMe also uses local physical infrastructure, hosted in Brisbane, Australia for development purposes and availability monitoring. No identifiable patient data is transferred to or from this facility.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>DoseMe Offices<\/strong><\/h4>\n\n\n\n<p>No patient data is ever stored on-premise.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Internal Security (User Access and Roles)<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>DoseMe and Role-Based Access Controls<\/strong><\/h4>\n\n\n\n<p>DoseMe has been designed with the ability to apply role-based access rules in terms of who can access which patients, and features within DoseMe. These rules are typically developed in conjunction with customers to suit their business requirements.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Ongoing Security Awareness<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>System Maintenance<\/strong><\/h4>\n\n\n\n<p>As part of DoseMe\u2019s medical device accreditation, DoseMe is committed to continually reviewing and maintaining systems that DoseMe has in place. These include standard schedules for server and software maintenance, and the regular reviewing of these procedures.<\/p>\n\n\n\n<h4 class=\"wp-block-heading\"><strong>For More Information<\/strong><\/h4>\n\n\n\n<p>If you have any further questions, queries, or would like any clarification,&nbsp;please <a href=\"https:\/\/doseme.com.au\/contact\">contact us<\/a>.<\/p>\n<\/div><\/div>\n","protected":false},"excerpt":{"rendered":"<p>DoseMe is committed to maintaining the integrity and security of hospital and patient data. As DoseMeRX and DoseMe (hereafter DoseMe) are a cloud-based offering, we outline here the implications and the steps taken to ensure that any data stored in DoseMe remains secure, and that personal health information remains private. Ownership of Data DoseMe considers [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"parent":0,"menu_order":38,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"class_list":["post-878","page","type-page","status-publish","hentry"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.3 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Data Security &#8226; DoseMeRx<\/title>\n<meta name=\"description\" content=\"DoseMeRx is committed to maintaining the integrity and security of hospital and patient data.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/doseme-rx.com\/de\/data-security\" \/>\n<meta property=\"og:locale\" content=\"de_DE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Data Security &#8226; DoseMeRx\" \/>\n<meta property=\"og:description\" content=\"DoseMeRx is committed to maintaining the integrity and security of hospital and patient data.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/doseme-rx.com\/de\/data-security\" \/>\n<meta property=\"og:site_name\" content=\"DoseMeRx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/DoseMeApp\/\" \/>\n<meta property=\"article:modified_time\" content=\"2021-04-07T02:56:40+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@DoseMeApp\" \/>\n<meta name=\"twitter:label1\" content=\"Gesch\u00e4tzte Lesezeit\" \/>\n\t<meta name=\"twitter:data1\" content=\"4\u00a0Minuten\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Data Security &#8226; DoseMeRx","description":"DoseMeRx is committed to maintaining the integrity and security of hospital and patient data.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/doseme-rx.com\/de\/data-security","og_locale":"de_DE","og_type":"article","og_title":"Data Security &#8226; DoseMeRx","og_description":"DoseMeRx is committed to maintaining the integrity and security of hospital and patient data.","og_url":"https:\/\/doseme-rx.com\/de\/data-security","og_site_name":"DoseMeRx","article_publisher":"https:\/\/www.facebook.com\/DoseMeApp\/","article_modified_time":"2021-04-07T02:56:40+00:00","twitter_card":"summary_large_image","twitter_site":"@DoseMeApp","twitter_misc":{"Gesch\u00e4tzte Lesezeit":"4\u00a0Minuten"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/doseme-rx.com\/de\/data-security","url":"https:\/\/doseme-rx.com\/de\/data-security","name":"Data Security &#8226; DoseMeRx","isPartOf":{"@id":"https:\/\/doseme-rx.com\/de#website"},"datePublished":"2017-05-19T01:26:45+00:00","dateModified":"2021-04-07T02:56:40+00:00","description":"DoseMeRx is committed to maintaining the integrity and security of hospital and patient data.","breadcrumb":{"@id":"https:\/\/doseme-rx.com\/de\/data-security#breadcrumb"},"inLanguage":"de","potentialAction":[{"@type":"ReadAction","target":["https:\/\/doseme-rx.com\/de\/data-security"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/doseme-rx.com\/de\/data-security#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/doseme-rx.com\/de"},{"@type":"ListItem","position":2,"name":"Data Security and DoseMeRX"}]},{"@type":"WebSite","@id":"https:\/\/doseme-rx.com\/de#website","url":"https:\/\/doseme-rx.com\/de","name":"DoseMeRx","description":"Choose us for our world-leading Bayesian dosing software. Stay with us for our best-in-class customer service.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/doseme-rx.com\/de?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"de"}]}},"_links":{"self":[{"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/pages\/878","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/comments?post=878"}],"version-history":[{"count":9,"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/pages\/878\/revisions"}],"predecessor-version":[{"id":7178,"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/pages\/878\/revisions\/7178"}],"wp:attachment":[{"href":"https:\/\/doseme-rx.com\/de\/wp-json\/wp\/v2\/media?parent=878"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}