As a pharmacist or a health store owner, you handle sensitive customer data. To support you in maintaining compliance with data protection regulations such as HIPAA, GDPR, and DISHA Compliances, we follow stringent guidelines and provide necessary tools and agreements.
Encrypted with AES-256 encryption for data at rest.
TLS encryption for data in transit to protect data during transmission.
Implemented RBAC mechanisms to restrict access to customer health data.
Implemented encryption, data minimization, access controls, and user privacy options.
Use of secure protocols and APIs, such as HTTPS, for data transmission.
Prevention of intrusions and prompt response to issues.
Our platform is encrypted with AES-256 encryption for data at rest to protect patient information from unauthorized access or breaches.
✅ No Action Required
We utilize TLS encryption for data in transit to protect data during transmission between users and servers.
✅ No Action Required
Only authorized users can access sensitive data. You can manage access rights for your pharmacy staff through your admin portal ensuring they only view or edit data they can access.
⚠️ Your Action Required
We facilitate you with a ready-to-sign BAA, ensuring compliance and safeguarding sensitive details.
✅ No Action Needed
DigitalPharmacy.io acts as the data processor, while you are the data controller, giving you control over how data is processed.
✅ No Action Needed
We provide mechanisms for regular data backups and ensure recovery processes are in place in case of data loss or system failures.
✅ No Action Needed
You must provide comprehensive HIPAA training to all your employees on a regular basis. Ensure your staff are aware of their responsibilities in safeguarding PHI.
⚠️ Your Action Requiredregularly
DigitalPharmacy.io has appointed a Data Protection Officer (DPO) who handles inquiries from your clients regarding processing their personal data.
✅ No Action Needed
We offer secure messaging systems both on the website and app, but you must ensure that you do not share PHI in your messages.
⚠️ Your Action Required
While we assist with risk assessments, you must conduct regular privacy and security risk assessments. Our team can support you in this process.
⚠️ Your Action Required
You must ensure all third-party integrations are compliant with HIPAA standards and establish data processing agreements where necessary.
⚠️ Your Action Required
Under GDPR, a Data Protection Impact Assessment (DPIA) is mandatory. As a data controller, you must conduct this assessment, detailing technologies used for handling personal data, assessing client risks, and specifying security measures for data storage.
⚠️ Your Action Required
We support data portability and the right to be forgotten, ensuring your patients’ data can be transferred or deleted upon request.
✅ No Action Needed
Under GDPR, you must promptly inform the relevant supervisory authority within 72 hours of any data breaches. We assist with the technical aspects of the notification.
⚠️ Your Action Required
Maintain documentation of compliance with data protection regulations. Notify us promptly of any data breaches to ensure timely and appropriate responses.
⚠️ Your Action Required
We have integrated privacy by design and default principles into our platform to protect patient data. This includes implementing encryption, data minimization, access controls, and user privacy options to ensure compliance with GDPR and build trust with users.
✅ No Action Needed
DigitalPharmacy.io has appointed a Data Protection Officer (DPO) who handles inquiries from your clients regarding processing their personal data.
✅ No Action Needed
You must ensure all third-party integrations are compliant with GDPR standards and establish data processing agreements where necessary.
⚠️ Your Action Required
We ensure that our platform supports compliance with DISHA requirements for maintaining Customer Health Data.
✅ No Action Needed
We have implemented AES-256 encryption for data at rest to secure stored customer health data.
✅ No Action Needed
We have implemented RBAC mechanisms to restrict access to customer health data based on user roles and responsibilities.
✅ No Action Required
You must ensure transparency and clarity in data privacy policies for your customers and stakeholders, meeting DISHA compliance standards.
⚠️ Your Action Required