Protect your sensitive data.
Learn more about the features of the openmedic platform.
with effective protection of your data and communication within your hospital.
The openmedic platform can be easily operated within the infrastructure of your hospital. This gives you full control over the security measures to comply with your strictest privacy policy.
The openmedic platform ensures that the transfer of data is completely encrypted.
The communication of your medical staff among each other as well as with external physicians is additionally encrypted, including all file attachments.
All sensitive data is stored in encrypted form in the databases.
All passwords are stored encrypted according to the recommendations of the National Institute of Standards and Technology (NIST).
openmedic has a powerful intrusion detection and prevention system. By introducing this extra layer of security, threats are detected and averted in real time. The security management system logs the threats and informs the responsible parties in your hospital.
Efficient and secure.
The openmedic platform allows the definition of any user groups with finely graded rights of use. Additionally, each user can in turn set different access rights for his or her posts.
Furthermore, openmedic also offers protection against brute force, cross site scripting, SQL injection, session hijacking and cookie theft attacks.
Protect your employees' accounts with advanced multi-factor authentication.
Today, weak credentials or credentials stolen through phishing are one of the biggest IT security threats facing businesses. Unique passcodes (OATH OTP) protect your employee accounts against phishing. In addition to the usual login data, a 6-digit code must also be entered for authentication. This code is regenerated every 30 seconds on the mobile device previously registered by the respective user.
openmedic also supports secure logon using hardware-based security keys (FIDO U2F). They use public-key encryption for authentication with secure protection against phishing, session hijacking, man-in-the-middle and malware attacks.