All the company’s study servers are co-located in hosting facilities in Boston area with 24×7 security. The Company ‘s database and web servers are configured by experienced network and security consultants to ensure invulnerability from unauthorized network access. The study servers are located behind a firewall with inbound port access limited to the secure SSL and SSH ports. The Studymaker web application by which researchers submit Clinical Research Forms communicates with the study server by way of 128 bit encrypted HTTPS. All personal history data fields as defined by the HIPAA regulations are encrypted in the database using a 128 cypher. Major studies are hosted on their own dedicated, enterprise class server with Dual processor and RAID technology for data reliability. Data Backups are done on daily and weekly basis.
After a study server is configured for a study all administrative passwords are changed so that only the StudyMaker Data Manager for the study has SSH remote access to the server. The StudyMaker Data Manager only interacts with the Study server on as needed basis to:
The StudyMaker application uses a method called ROLE based access to limit Site Investigators access to patient Clinical Research Forms of their institution. Each site is provided a limited number of sign-ins from which they can Enter, View, and Edit the Clinical Research Forms submitted from their site.
With the PI role, the Principal Investigators have the ability to View, Print or Download in Excel format: