Security
We make sure your data stays yours
Patient Watch is GDPR compliant and DPIA approved by NHS organisations. Dealing with patient data is always scary so we are constantly working to make trusting us easier.
Technical Expertise
We combine industry gold-standards with cutting edge technology to keep your data safe.
Authentication and Authorization
- JWT for secure authentication.
- Salted & hashed passwords.
- MFA for privileged users.
- Different access levels for roles.
- OAuth 2.0 Protocols.
Network Configuration
- Exclusive use of HTTPS.
- SSL for data transmission.
- Cross Origin Restriction policies.
- Firewalls and intrusion detection.
- 99.99% uptime.
Vulnerability Tracker
- Rate limited servers.
- Front and backend input validation
- Man-in-the-middle attack mitigation.
- Regular vulnerability assessments.
- AES-256 encryption.
GDPR Compliant
We know that your data is yours alone. We are GDPR compliant.
Explicit Consent Mechanism
User-friendly consent forms obtain explicit consent before collecting data.
Data Minimization
Our data collection policy shows how we collect only data necessary.
Data Encryption
All data transfers are encrypted for confidentiality during transmission.
Data Portability and Erasure
Patients portability and erasure requests are processed in 48 hours.
Regular Audits and Assessments
Quarterly internal audits are completed for continuous improvement.
Data Processing Agreements
Our Acceptable Use Policy ensures third-party vendors are GDPR compliant.
Transparent Privacy Policies
Maintain an accessible Privacy Policy which is regularly updated.
UK Based Data Storage
Implement controls to store patient data securely within the UK.