Full traceability and privacy
eCRF traces each action on the data via an Audit-Trail:
- Electronic signature is required on each action affecting the data;
- All connections are recorded and accompanied by the details of the action taken;
- All actions are stored and traced back.
EOL© traces all actions and data manipulations for the duration of the session to ensure that an Audit Trail is saved and stored for future reference.
EOL© offers complete data privacy. Personal data collected is protected and cannot even be read in the MEDSHARING databases and backups.
Access control serves to check the user's identity and, according to his profile, to allow or not access to certain features. EOL© is equipped with a tough authentication system that requires several data to be identified: study code, centre number and personal signature.
Compliance with the CFR PART 11 standard
Access management:
- Application of the rules for open system;
- Access refused after a configurable number of attempts;
- "ID/signature" unique per user;
- Encrypted signature in the database;
- On first access, a provisional signature is sent which must be customised by the owner as soon as he accesses the system;
- In case of loss of signature, a new temporary password is assigned to him which must be customised by the owner as soon as he accesses system;
- It is not possible to have the same signature for two different profiles;
- System prohibits obvious signatures by adding a three characters key defined by the system;
- Possibility to block access to a user;
- It is not possible to delete an account if data is associated to it;
- Traceability of all kinds of access, unsuccessful ones included;
- Unauthorised access for those who have no ID, or those who have a disabled account;
- Unable to connect simultaneously with the same account.
Management of passwords:
- The administrator of the study is the only authority who can create, enable, disable and delete user accounts;
- The administrator can not in any way delete an account in which data has already been entered;
- When creating an account, a provisional signature is sent by mail to the end user;
- The end user must be able to customise it to enter or include patients in his study;
- When he loses his ID, the end user must report to the administrator who will apply for reallocation of signature;
- At the request of reassignment, a new temporary signature is automatically generated and sent by mail to the end user who must customise it again.
Integrity and authenticity of data:
- Ensuring the integrity of data through the SQL Server;
- Ensuring the integrity of data through the work methods and procedures.
Audit trail and electronic signature:
- The database access is limited according to the different rights and accounts. From the website, the SQL account used to access the database is restricted to actions that strictly need it;
- All data registration is preceded by the user's signature;
- Each change is tracked in a separate table (Audit Trail) with the unique user ID, date and time of the change;
- At each recording of medical data of the database, the unique user ID is associated with the date and time of the entry;
- The ID associated and the user cannot be deleted or modified if data has been entered;
- The time Stamp Indication is carried out by the servers that are synchronised to the atomic clock via NTP (Network Time Protocol).