About the App
Medxnote is a client application for a secure messaging service for Healthcare professionals. It does NOTHING without a subscription to the Medxnote platform, which is currently only available to our selected pool of pilot users.
If you would like to join the Medxnote platform, please email firstname.lastname@example.org and we will be in touch with more information about the product and our release schedule.
Medxnote replaces pagers and other less secure smartphone messaging apps with a fully HIPAA compliant platform that supports secure messaging, but also allow for audit and traceability of patient care events in a clinical environment. It also ensures that the cross-over between a clinician’s personal messaging and professional messaging is managed so that patient information isn’t disclosed in an unauthorised or unintended fashion.
Data Controller/Data Processor clarification
In the context of EU Data Protection laws, Medxnote Ltd is a Data Processor providing a secure data messaging service to healthcare providers. In all cases, the Data Controller will be the relevant Hospital, GP Practice, Clinic, or other healthcare provider who has adopted our platform
About the Company
Medxnote Ltd is the developer and provider of the Medxnote platform and related apps. We are an Irish registered private limited company.
Post: The Digital Exchange Building, Crane Street, Dublin 8, Ireland
About the data that we process
The Medxnote app, when used in conjunction with the Medxnote platform processes a range of personal and sensitive personal data about clinicians, other healthcare provider staff, and patients. This includes:
- Healthcare staff member/clinician name, contact details, and work assignment (to help us create user profiles and ensure messages are appropriately routed)
- Patient personal details as input by users of the application, which will include data relating to physical and mental health, diagnosis, care plans, etc. In future the platform and app will support the transmission and display of medical imaging and sensor data as well as traditional photographs and/or audio files.
Patient data is processed using this app and platform for the purposes of treatment of patients and to
prevent injury or other damage to the health of the data subject or others. Users are advised to ensure they have consent for the processing of patient data in the clinical environment but this may not always be possible to obtain in a clinical healthcare environment.
Security of Data
The Medxnote application, platform, and hosting environment are fully encrypted, with strong user access controls applied to all data and messaging.
The application has been designed from the ground up to meet HIPAA and EU Data Protection compliance requirements. These requirements and the functioning of the application and platform are kept under constant review.
Data relating to devices the app is installed on may be logged for support and data security purposes to ensure data is not being accessed from the Medxnote platform via the application in unauthorised circumstances.
Data may be written to or read from the user’s device in the course of using the app and associated platform. The access to and processing of this data is a necessary part of the operation of the platform and as such does not require consent under EU law. By downloading the application, applying for a Medxnote account, and using the application, users consent to the reading and writing of data to their device when connected to a public telecommunications network.
Getting Access to Data
Medxnote acts as a Data Processor for our clients who are Healthcare service providers. Users of the application who wish to have a copy of their user profile should first contact their employer who will make the appropriate request to us.
Patients who have had their data processed via the Medxnote platform should request their data from their Healthcare provider. Under Irish Data Protection law there are a range of exemptions from disclosure of personal and sensitive personal data, particularly data relating to Clinical care, which we are simply not qualified to decide on. As we are simply a data processor providing a secure messaging capability, we would advise that individuals seeking access to patient data should contact their healthcare provider. We will, of course, comply with any instructions we receive from any of our Healthcare clients regarding disclosure of data.
“This App doesn’t do anything”
This app doesn’t do anything on its own. It is simply a client-side app for a larger messaging service which is not a publicly accessible messaging platform. If you’ve installed the app and it isn’t doing anything:
- Check if you are working in the Health care sector as a provider of care
- See if your Hospital, Clinic, or GP Practice has signed up to Medxnote
- If they have, ask for a login to be created for you.
If the answer to any of these questions is “NO”, then one of the following applies:
- You are not in the healthcare sector and are not a target user for this app and should delete it.
- You are in the Healthcare sector and your Hospital, Clinic, or GP practice might be interested in Medxnote – contact us for a demo and to discuss your needs
- Your facility is a user, but your administrator needs to set you up. Go talk with them to see whatyou need to do next.
Last updated: 18 January 2016