top of page

Patient De-identification

Updated: 18 January, 2023
Overview
Preamble
The cloud platform made available to RECOMIA and its research partners is delivered and maintained by SliceVault, a company dedicated to providing secure and compliant cloud-based solutions for managing medical images in clinical research.

RECOMIA maintains a license to the SliceVault cloud-platform, and as data sub-processor SliceVault acts only upon work-instructions given by RECOMIA.

Introduction to patient de-identification
Following industry best-practices, the cloud-platform uses a standards-based approach to de-identification of DICOM images to insure that images are free of protected health information (PHI). 
The de-identification process is developed in accordance with the requirements set forth by the Federal Drug Administration (FDA) and the European Medicines Agency (EMA). These requirements are defined the Health Insurance Portability and Accountability Act (HIPAA) section 164.514(b)(2) of the HIPPA Privacy Rule. The standard for de-identification of DICOM objects is defined by the DICOM Standard PS 3.15-2011 Digital Imaging and Communications in Medicine (DICOM), Part 15: Security and System Management Profiles.

The de-identification process happens automatically and all data is de-identified locally at the submitting site before data it is uploaded via secure communication to the servers.

For more information about de-identification and access SliceVault's de-identification whitepaper click here.
bottom of page