Secure Information
Ensuring the security of information systems and data protection is paramount at Implicity.
- Encryption of health data and data flows.
- Data integrity checks are aimed at verifying the accuracy and completeness of data, particularly patient data received from Manufacturers.
- A management procedure for subcontractors, who must ensure a high level of security regarding the data they are required to process.
- Identity and access controls via a strong two-factor authentication system for access to the platform.
- Devices and processes facilitating the tracking of all actions, security-relevant incidents, and malfunctions undertaken on the solution.
- A procedure for controlling who can access health information.
- Confidentiality obligations vis-à-vis anyone who has access to health data.
Implicity is ISO27001 certified for the management of the security of its information system and a “health data host” in France within the meaning of article L.1111-8 of the Public Health Code. Implicity has implemented the procedures to comply with HIPAA requirements to protect US patient data in the United States. Respectful of patient privacy, Implicity has ensured, by carrying out an impact analysis, that its processing does not present high risks for data security.
Implicity has implemented technical and organizational measures for the security of its information system, particularly to protect the data it processes in the context of its activities against accidental or unlawful destruction, accidental loss, unauthorized alteration, dissemination, or access to data. Implicity therefore guarantees: