Audit

Append-only log for all data activities

Data Privacy is a paramount concern with SafeCDx. SafeCDx employs various Systems to safeguard it. One of those Systems is the Audit System, which diligently records every transaction in the platform. It creates an Audit Log that attributes data access and modifications to specific individuals, including human Users and non-human Service Accounts. It provides traceability and accountability in regards to personal and private information.

The Audit System is meticulously designed and constructed to fully meet today’s stringent data security requirements. As such it is fully compliant with various regulations, among which HITRUST, HIPAA, and FDA 21 CFR Part 11.

The Audit System vigilantly tracks the data flow across the numerous applications that comprise SafeCDx. However, the mere existence of a record is of little value without the ability to utilize it effectively.

The Audit Log is a valuable resource that can be used to compose an Audit Trail for any piece of data at any point in time. It can be utilized for reporting purposes, analytics, and forensic investigations. The Audit Log itself is an append-only store, meaning Data can be added, but never modified or deleted. Mechanisms to mutate data don’t even exist within the platform. This characteristic makes it the ultimate source of truth.

Furthermore, all personal information within the Audit Log is encrypted to provide an additional layer of protection. This encryption ensures that individuals with direct access to the data store, such as system administrators, are shielded from being inadvertently exposed to Personal Identifiable Information (PII) or Protected Health Information (PHI).