Whitepaper

Truveta's approach to data security

Truveta delivers the most complete, timely, and clean regulatory-grade EHR data, including notes and images, linked with social drivers of health, mortality, and claims data for a complete view of patient journeys. Truveta Data is normalized, de-identified, and updated daily, enabling scientifically rigorous research on any drug, disease, or device.

To protect Truveta Data, Truveta developed one of the most advanced data security and patient privacy systems in the healthcare industry. These systems protect data through every stage of the data handling process and have been validated to meet the most rigorous standards for privacy and security.

This whitepaper provides insight into:

  • How systems and patient data are protected through risk-prioritized controls covering identity and access, zero trust architecture, data storage, and encryption
  • How Truveta manages the complex flow of health data and the wide variety of security scenarios — from extremely high security requirements in Embassies that handle PHI, to our customer zones where de-identified data may be accessed externally 
  • The third-party audits, certifications, and examinations Truveta holds or has completed, which speak to the maturity of business operations and security programs that maintain the trust of our customers and members

Read the whitepaper now