Confidentiality
Our goal is to make digital information exchanges across the web as confidential as face to face meetings between carers or clinicians and their patients. To that end we ensure that the only people able to see what was discussed and shared is the patient and the clinician and appropriate, limited, persons in the service organisation providing management oversight and clinical quality assurance. Certainly not us, the platform provider.
E2EE (End-to-End Encryption), properly implemented, means we can never see your informational exchanges, ever, so you can trust our service is solely to facilitate your patient engagements and not to monetise patient data.
Our use of E2EE sets us apart from your other platform providers who either rely on a god-mode admin who could, if directed or coerced, access all this information, or 3rd party encryption key providers who themselves could be compromised.
E2EE also means if our platform servers are ever hacked, no consultation content, none, can or will be exposed. Only a hack of your account on your device can lead to information loss, and even then, only the data you have access to i.e. your patient data only, or a clinicians directly served patients, not the organisations and not the entire database. This is a critical benefit of adopting E2EE . It’s why organisations like the NHS require all your audio/visual consultations to be E2EE, so why not all other information exchanges too?
Of course, sometimes information needs to be shared outside of the consultation, but it should always be clear what information, shared with whom and for what (legally and/or clinically limited) purpose. Our platform will drive patients and clinicians to be clear, open and consensual about this, which in turn supports legal compliance for the service provider, massively reducing cyber and data protection governance risk.
For information on compliance support to various NHS and other regulatory guidelines contact buildingtrust@safespaceone.com