Presentation is loading. Please wait.

Presentation is loading. Please wait.

REDCap and Data Governance

Published byClemente Ruggeri Modified over 6 years ago

Similar presentations

Presentation on theme: "REDCap and Data Governance"— Presentation transcript:

1 REDCap and Data Governance
Tom Drake

2

3 ?

4

5

6 Why REDCap? Strongly Tested Large Support network
Simple and easy to use Secure!

7

8 Security REDCap is run by the Surgical and Perioperative Health Research (SPHeRe), University of Edinburgh under licence from Vanderbilt University. REDCap was developed specifically around HIPAA-Security guidelines. It is hosted within the University of Edinburgh Virtual Machine architecture which is physically secured. Linux web servers running apache2/php5 host the application. Web browser communication to the server is SSL-encrypted by default. All other ports are firewall protected. Data is stored in MySQL databases on a separate server. This server is behind a firewall and can only be accessed from the IP address of the web server. An SSL tunnel encrypts communication between the web and databases servers. File upload is secured between servers using the WebDAV protocol with SSL. "At rest" encryption is in place on the database server. Daily back-ups are made of both servers and stored for two weeks prior to being deleted. Operating security updates are installed automatically. Antivirus software runs to a scheduled protocol on the web server. User passwords are managed directly. Accounts are disabled after 5 failed login attempts. Users are auto logged out after 30 mins of no activity. Users are forced to change password after 90 days. Password strength: AT LEAST 9 CHARACTERS IN LENGTH and must consist of AT LEAST one lower-case letter, one upper-case letter, and one number. Daily audit tracking of users is in place with removal of unused user accounts.

9 Organisation REDCap Project 1 Project 2 Project 3 Instruments

10 STARSurg REDCap redcap.starsurg.org Access via starsurg.org
Or go straight to: redcap.starsurg.org

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25 Top REDCap tips Use a recent internet explorer browser. (Some of the NHS ones don’t speak internet anymore) Check spam Set a password reminder!

26 Data Governance Data governance very important!
Confidentiality, Privacy and NHS obligations All sites and every collaborator!

27 The Information Commissioner's Office

28 The Data Protection Act
Used fairly and lawfully Used for limited, specifically stated purposes Used in a way that is adequate, relevant and not excessive Accurate Kept for no longer than is absolutely necessary Handled according to people’s data protection rights Kept safe and secure Not transferred outside the UK without adequate protection

29 (Practical) Tips No data to leave the trust unless into REDCap
This includes on personal laptops and NHS.net Paper Hospital IDs in REDCap

30 Commissioner Vs.

31 =

32 Commissioner $ $ Vs.

33 Find out more here:

34 Summary REDCap- an easy, secure way of transferring data
Data governance Few simple rules Any problems us!

35 ?

Download ppt "REDCap and Data Governance"

Similar presentations

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.

Transfer Content to a Website What is FTP? File Transfer Protocol FTP is a protocol – a set of rules Designed to allow files to be transferred across.
Mountain Lion Security Mac OS X 10.8. Strong Passwords Every Mac needs a login name and password Every user on every Mac should have their own account.

Mountain Lion Security Mac OS X Strong Passwords Every Mac needs a login name and password Every user on every Mac should have their own account.
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.
1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.

Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.
1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.

1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.
1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.

1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.
Johnson Logistics Solutions Office of Systems and Information Technology.

Johnson Logistics Solutions Office of Systems and Information Technology.
Introducing K12Planet.com What is K12Planet.com? Who can access it? Is it secure? What do I need to use it? Can I control the information I see?

Introducing K12Planet.com What is K12Planet.com? Who can access it? Is it secure? What do I need to use it? Can I control the information I see?
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.
INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.

INTRANET SECURITY Catherine Alexis CMPT 585 Computer and Data Security Dr Stefan Robila.
Design Aspects. User Type the URL address on the cell phone or web browser Not required to login.

Design Aspects. User Type the URL address on the cell phone or web browser Not required to login.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
UNIT 3C Security of Information. SECURITY OF INFORMATION Firms use passwords to prevent unauthorised access to computer files. They should be made up.

UNIT 3C Security of Information. SECURITY OF INFORMATION Firms use passwords to prevent unauthorised access to computer files. They should be made up.
Yvan Cartwright, Web Security Introduction Correct encryption use Guide to passwords Dictionary hacking Brute-force hacking.

Yvan Cartwright, Web Security Introduction Correct encryption use Guide to passwords Dictionary hacking Brute-force hacking.
1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.

1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.
AIS, 20141 Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)

AIS, Passwords Should not be shared Should be changed by user Should be changed frequently and upon compromise (suspected unauthorized disclosure)
Staying Safe Online Keep your Information Secure.

Staying Safe Online Keep your Information Secure.
| nectar.org.au NECTAR TRAINING Module 5 The Research Cloud Lifecycle.

| nectar.org.au NECTAR TRAINING Module 5 The Research Cloud Lifecycle.
Computer Security Risks for Control Systems at CERN Denise Heagerty, CERN Computer Security Officer, 12 Feb 2003.

Computer Security Risks for Control Systems at CERN Denise Heagerty, CERN Computer Security Officer, 12 Feb 2003.

Similar presentations

Ads by Google