The BioMedIT Network shares a common security architecture to transfer, store, manage, analyze and share sensitive (biomedical) data while following the latest technical and legal standards required by Swiss legislation as well as internal regulations of the associated institutions.
Information Security Policy
All BioMedIT nodes comply with the requirements of the SPHN/BioMedIT Information Security Policy. The policy, in conjunction with an Access and Use Policy (AUPs, to be signed by BioMedIT users), related Standard Operating Procedures (SOPs) and Work Instructions (WI), define the necessary organizational and technical measures to guarantee the confidentiality, integrity, availability and resilience of the systems with regard to processing of data. These documents set out the way research data is handled, preventing misuse and malicious damage.
The purpose of this policy is to establish a framework to meet SPHN’s responsibilities in matters of Information Security with respect to compliance with the applicable regulations regarding the management, oversight and audit of Information Security. Additionally, it clarifies the roles and responsibilities of various parties relative to Information Security.