Bindle's anonymous proof of health system was specifically designed to be different from the traditional EMR (Electronic Medical Record) or EHR (Electronic Health Record). We use modern cryptography to set up your wallet, which includes creating a private key that is stored on the secure element (the chipset used to store credit card numbers) of the smart phone you use to setup your Bindle. This means any data on your account is solely in your control.
We protect your data at all times, both in transport to and from us and while stored in the cloud:
- Data in motion is protected using SSL/TLS (Secure Socket Layer/Transport Layer Security).
- Document storage on the individual’s device is managed using IOS and Androids secure element encryption.
- Document storage on AWS (Amazon Web Services) S3 uses SSE-S3 and AES-256 for server side encryption.
- Document storage on our RDBMS (relation database management system) uses database proprietary encryption methods.
- Document storage on distributed cloud network (like IPFS) using asymmetric encryption with individuals.
How and where is my information stored?
- All information obtained from an individual is encrypted using their public key. This information is then stored in a private S3 (AWS) folder, which also has AES-256 encryption enabled for all data at rest.
Can I ask that my information be removed or destroyed at any time if I decide to stop using your services?
- Data stored on immutable blockchain in encrypted state. User can destroy the private key residing in the secure enclave of their smartphone at any time. Without the private key, all data is unavailable. Users can add data, but due to the nature of a blockchain, users can’t edit or delete data.
- Bindle uses industry standard for login and password procedures.
- Bindle has a healthcare/security compliance officer along with a third party compliance vendor that assists with audits of our code and infrastructure
- Bindle has strict controls around who can access sensitive information
Comments
0 comments
Please sign in to leave a comment.