Information security

As a provider of innovative software solutions for healthcare, information security is at the very core of our services. We understand the critical importance of protecting your sensitive (medical) data. Our cloud services are purposefully designed to offer superior security compared to many traditional, on-premise solutions. Protecting patient data is a primary design criterion and forms the foundation of our entire organization—from organizational structure and training to recruitment procedures.

Our security guarantees

• GDPR Compliance: We operate in full compliance with the GDPR to safeguard the privacy and rights of data subjects.
• Regular Updates: We continuously perform security releases to proactively keep our platform secure.
• External Validation: Our applications are periodically subjected to external penetration testing to detect and fix vulnerabilities.
• NEN 7510 + ISO 27001 certified: All Health Cloud Initiative business units are certified according to the leading standards (NEN 7510 + ISO 27001) for information security.

Overview of certificates

Health Cloud Initiative and its labels have the following certifications:

ISO 27001

View the certificates:

• DigiTrust Certificate ISO 27001 Health Cloud Initiative BV
• DigiTrust Sub-certificate ISO 27001 Evry BV
• DigiTrust Sub-certificate ISO 27001 HCI CRS BV
• DigiTrust Sub-certificate ISO 27001 HCI Paramedie BV
• DigiTrust Sub-certificate ISO 27001 Monitored Rehab Systems BV
• DigiTrust Sub-certificate ISO 27001 Nice Software BV
• DigiTrust Sub-certificate ISO 27001 Pharmeon BV
• DigiTrust Sub-certificate ISO 27001 Quli BV
• LRQA Certificate ISO 27001 SpotOnMedics BV
• DNV Certificate ISO 27001 Embloom BV 

NEN 7510

View the certificates: 

• DigiTrust Certificate NEN 7510 Health Cloud Initiative BV
• DigiTrust Sub-certificate NEN 7510 Evry BV
• DigiTrust Sub-certificate NEN 7510 HCI CRS BV
• DigiTrust Sub-certificate NEN 7510 HCI Paramedie BV
• DigiTrust Sub-certificate NEN 7510 Monitored Rehab Systems BV
• DigiTrust Sub-certificate NEN 7510 NICE software BV
• DigiTrust Sub-certificate NEN 7510 Pharmeon BV
• DigiTrust Sub-certificate NEN 7510 Quli BV
• LRQA Certificate NEN 7510 SpotOnMedics BV
• DNV Certificate NEN 7510 Embloom BV 

Practical tips for data security within your practice

In addition to our structural measures to continuously safeguard information security, there are also practical measures you as a user can implement to strengthen information security within your organization:

• Handle login details with care. Never store them unprotected on your computer or paper note.
• Make sure that automatic login is not activated for the .RDP connection
• Use strong passwords and change them regularly.
• Use 2-factor authentication (2FA) where possible.
• Ensure clear management of user rights and roles.
• Always log out when you leave a workstation.
• Use screen savers on devices that have access to patient data.
• Do not send confidential personal data via unsecured email.