Security
An operations platform for clinics must be secure – technically, procedurally and in terms of access control. MedFlow is built with the requirements of the healthcare sector in mind.
Data location and storage
- Data is stored in EU-based servers with agreed security levels.
- Segregated client environments ensure data isolation.
- Regular backups and recovery procedures are in place.
Encryption and access
- Data is encrypted at rest and in transit (TLS/SSL).
- Role-based access: each user only sees what they need for their work.
- Two-factor authentication is available.
Logs and audits
- All critical actions are logged with timestamp and user.
- Audit logs are available for regulatory and quality systems.
- Logs are retained for the period specified in the agreement.
Summary for leaders and IT
For clinic leaders
- Clear answers to who can access what across all roles.
- Critical actions are logged – suitable for audits and quality systems.
For IT and security
- Data is hosted in EU-based, segregated environments with encryption at rest.
- Role-based permissions and detailed logging support investigations and supervisory reviews.
Need more detailed information about security requirements and agreements?Request a detailed overview