Security and privacy
Safe solutions for the healthcare sector
Our approach to security
Security culture is second nature at Deepinsight, from leadership to each individual employee. Security and privacy are built into every phase of product development, where we balance the need for innovation against the requirements of the healthcare sector. We are ISO 27001 certified, and we build our platform according to Zero Trust principles.
Confidentiality
Only authorized parties have access to data.
Integrity
Data is correct and protected against unauthorized changes.
Accessibility
The services are available when you need them.
ISO 27001
Through the certification, we comply with recognized international information security requirements. We work systematically with risk management, clear security processes, and continuous improvement.
NIS2
We comply with the requirements of the NIS2 directive and the Norwegian implementation of the Digital Security Act. Our customers can be completely confident that we have the necessary processes in place so that the customer can also meet its obligations under NIS2.
GDPR
Deepinsight processes personal data in accordance with GDPR. Data is only processed for defined purposes, in accordance with the data processing agreement, and with necessary security measures in place.
"The Code"
Deepinsight follows the requirements and recommendations set out in "Normen": The Code of Conduct for information security and data protection in the healthcare and care services. This act as the basis for the services we deliver, applying to organizational, technical, physical, and personnel security measures to achieve satisfactory information security and privacy in the health sector.
