Skip to Content

Focus on your patients, we are here to secure your data 

Secure solutions, compliant with the nLPD (new law on data protection) and the federal law on medical establishments (LEMed), an adaptable level of confidentiality to suit your needs.

Contact us for any question

Your patients' data are secured




High-quality hosting

Our application is hosted on RGPD & HDS compliant hosting, certified ISO 27001. All data are transmitted securely via HTTPS and TLS 1.3.




Strong passwords & double authentication

To ensure the highest levels of protection for your account and data, we maintain a strict password policy, with a double authentication mechanism that can be activated on request



Compliant solution

Our solutions are natively compliant with the RGDP, at any time you can from your user portal request to exercise your rights, including to delete specific data from certain patients




User preferences

You are in control of your patient data storage mode: no storage, anonymised storage, non-anonymised historical storage. In all cases, the highest level of security is applied to your data

.

Switzerland: nLPD and LEMed compliance

We fully comply with the new law on data protection

Patient data are never transferred outside the European Union.

The nLPD is very close in these conditions to the European RGPD regulation (see https://www.kmu.admin.ch/kmu/fr/home/faits-et-tendances/digitalisation/protection-des-donnees/nouvelle-loi-sur-la-protection-des-donnees-nlpd.html)

The RGPD is a European Union regulation that establishes a new framework for the processing and protection of personal data of EU residents. It came into effect on 25 May 2018. It provides EU residents with better control over their personal data and the assurance that their information is protected securely throughout Europe.

PraxySanté allows you to exercise your rights (access to data, deletion) and also gives you the possibility to manage patient requests around personal data.


🔐 Security by design

✔ Certified health servers with ISO 27001 compliance and Health Data Host (HDS)

✔ NIST SP800-63B password policy

✔ Access control with granular user-level permissions

✔ Prevention of simultaneous connections and automatic disconnection in case of inactivity

✔ Secure communication via TLS 1.3 protocol

✔ Database encryption with multiple 32-bit rotating keys

✔ Salting of identity data with SHA-256 hash function

✔ Automated backup every 24 hours with 30-day storage

✔ Automated pseudonymisation of identification data

✔ Patient data anonymisation/pseudonymisation tool (transcripts, reports, audio files)