Hardened Security
Processing of the data takes place in two steps, all in transit, in memory – as a first step, a copy of the data gets pushed to an end-to-end encrypted vault.
Identity & Access Management
Only SiteRx’s Privacy Officer will have direct access to this data, as mandated by HIPAA. Also, all identifiable information is removed from this data and then pushed to a secure, access-restricted database.
Exceeding HIPAA Compliance
SiteRx’s machine learning algorithms only run against this de-identified data to come up with accurate trial recommendations. All PHI is stored according to the HIPAA physical and technical safeguards.