Absolutely! Although Labfolder is primarily used for non-clinical data, the hosted solution fulfills the requirements demanded by HIPAA compliance:
- Limited and regulated access to the physical storage facilities.
- Access control to all data can be administered by the customer.
- Encryption applied to:
i) System - sensitive information in the server
ii) Sensitive patient data
iii) All communication with the Labfolder server
- Audit records of entries and server activities in the Labfolder ELN are kept.
- Data integrity in Labfolder is ensured through:
i.) Continuous tests and safeguarding measure, which prevent deletion or loss of data
ii.) Digital signature, which retains the integrity of document data via external auditors