We make sure your data stays yours
Patient Watch is GDPR compliant and DPIA approved by NHS organisations. Dealing with patient data is always scary so we are constantly working to make trusting us easier.
Technical Expertise
Authentication and Authorization
- JWT for secure authentication.
- Salted & hashed passwords.
- MFA for privileged users.
- Different access levels for roles.
- OAuth 2.0 Protocols.
Network Configuration
- Exclusive use of HTTPS.
- SSL for data transmission.
- Cross Origin Restriction policies.
- Firewalls and intrusion detection.
- 99.99% uptime.
Vulnerability Tracker
- Rate limited servers.
- Front and backend input validation
- Man-in-the-middle attack mitigation.
- Regular vulnerability assessments.
- AES-256 encryption.
Regulatory Compliance
Medical Device Classification
Class I medical device under UK regulations
Organisation Details
Device Details
ICO Registration
Data protection compliance
Registration Details
GDPR Compliant
Explicit Consent Mechanism
User-friendly consent forms obtain explicit consent before collecting data.
Data Minimization
Our data collection policy shows how we collect only data necessary.
Data Encryption
All data transfers are encrypted for confidentiality during transmission.
Data Portability and Erasure
Patients portability and erasure requests are processed in 48 hours.
Regular Audits and Assessments
Quarterly internal audits are completed for continuous improvement.
Data Processing Agreements
Our Acceptable Use Policy ensures third-party vendors are GDPR compliant.
Transparent Privacy Policies
Maintain an accessible Privacy Policy which is regularly updated.
UK Based Data Storage
Implement controls to store patient data securely within the UK.
Frequently Asked Questions