Absolutely! Although Labfolder is primarily used for non-clinical data, the hosted solution fulfills the requirements demanded by HIPAA compliance:

  • Limited and regulated access to the physical storage facilities. 
  • Access control to all data can be administered by the customer.
  • Encryption applied to:

                    i)   System - sensitive information in the server

                    ii)  Sensitive patient data

                    iii) All communication with the Labfolder server

  • Audit records of entries and server activities in the Labfolder ELN are kept.
  • Data integrity in Labfolder is ensured through:

                    i.)  Continuous tests and safeguarding measure, which prevent deletion or loss of data

                    ii.) Digital signature, which retains the integrity of document data via external auditors