Risk
Avert's systems are designed to protect access to personal data
and management information. Its security
functionality only allows users to access
information relevant to them:
> Data - access to personal records can be restricted by user group and individual users. Authorised users of personal data can be restricted to viewing relevant records only.
> Data - access to personal records can be restricted by user group and individual users. Authorised users of personal data can be restricted to viewing relevant records only.
> Functionality - functionality that is not appropriate for specific user groups and users can be restricted and hidden.
> Reports - reports that are not appropriate for specific user groups and users can be restricted and hidden.
Data transmitted
via the internet and intranet networks is protected:
> NHS
N3 compliance - the
applications and hosting sites have attained NHS N3
compliance.
> HTTPS and firewalls - all transmitted data undergoes 128 bit encryption.
> Database encryption - personal data is encrypted in the database tables.
Patient
data security Only authorised users can access personal data and all access can be tracked. Data does not need to be held on the users computer.
Compliant
with NHS Security Standards The systems architecture has been audited by the NHS CFH team and given N3 status.