On May 25, 2018, the European Union will enact new legislation called the General Data Protection Regulation (GDPR). Clinics that process Personal Health Information (PHI) of EU individuals, even if located outside of the EU, will need to comply. Here’s some more information about what Jane has done to prepare for GDPR.
Jane is Ready for GDPR
Jane has an in-house Data Protection Officer (DPO).
Jane conducted the appropriate system & business assessments to comply with GDPR.
Data moves from your computer to our servers using 256 bit encryption - same as your bank.
Jane stores your data on servers that GDPR considers appropriate for YOUR clinic location.
The #1 question clinics ask us is: Where will Jane store my data? Jane complies with privacy laws across the world, not just GDPR. In fact, GDPR’s requirements are actually very similar to many other laws that care about the physical location where data is stored. What does that mean for you? We have servers located in multiple countries that allow us to comply with a variety of data protection laws - including GDPR. Our Support staff can give you a hand anytime if you have questions about which server will hold your data.
Data Protection Features
1 - Jane requires all users have a unique User ID and Password.
2 - Account owners assign Access Levels, and that role limits what data the user can access.
3 - Practitioners choose who has access to their charts with Charting Privacy Options.
4 - Easy sign-out and sign-back-in for secure use on shared devices.
5 - Fast password resetting from main login page so staff can keep passwords fresh (and more secure).
6 - Jane has options for obtaining consent for:
- Collecting PHI
- Marketing and other purposes (Jane also has active opt-out options).
7 - You can export charts or clinical notes (and send those out for PHI requests).
8 - Sign & lock charts with a permanent timestamp that is never changed.
9 - In case of a charting error, “Amend” function fixes & keeps original chart sign & lock time/date.
10 - Jane tracks activity of each user in the Activity Log.
Our Support staff are ready to answer any other questions that come up. Let us know if you need a hand, and we can address any concerns you have that are specific to your clinic.
And if you’re interested in some more nitty gritty details on GDPR and what you can do to prepare, read these: