FAQ | Chino.io

FAQ

Read on for answers to some frequent questions

Is Chino.io compliant with EU Data Protection laws?

Yes, we are fully compliant with all EU privacy & security directives, regulations and guidelines, including GDPR. We also actively monitor all changes and check how they will affect us and our customers.

What about EU member state laws?

Every EU Member State must comply with the EU Data Protection Directives and Regulations. However, these specify minimum standards. Some Member States apply stricter rules e.g. requiring that all data is stored within that specific country.

If you have a question about a specific country, please contact us.

Are you compliant with US laws like HIPAA and HITECH?

Our technology is fully compliant with all requirements for HIPAA and HITECH in the USA. We also work closely with US lawyers for any customers needing to be certified.

What other jurisdictions do you work in?

We work with clients all over the world and are constantly expanding our expertise and knowledge. Contact us to find out how we can help you in your situation.

What certifications do you have? We are fully certified for health data storage and hold ISO 9001, ISO 13485 and ISO 27001 certificates. Contact us if you need to see full details of these. Does Chino.io have a right to access my data? We will never and can never access your data on our servers. Our system is designed to be completely secure and uses strong encryption and pseudonymisation to store your data.

What certifications do you have?

We are fully certified for health data storage and hold ISO 9001, ISO 13485 and ISO 27001 certificates. Contact us if you need to see full details of these..

Does Chino.io have a right to access my data?

We will never and can never access your data on our servers. Our system is designed to be completely secure and uses strong encryption and pseudonymisation to store your data.

Do you offer consulting and legal support?

Chino.io offers legal assistance to help you determine what you need to do to become compliant. This includes assistance with completing essential documentation, such as privacy policies, data protection impact assessment (DPIA) and data processing agreements (DPAs). We also offer technical consulting to help you put in place all necessary technical measures for compliance. These include things like audit trails, consent tracking, pseudonymisation, encryption and access controls.

If needed, we can also introduce you to lawyers and experts other jurisdictions who are working with health data management.

However, we always suggest our customers also speak to their own lawyers when dealing with sensitive data. Each project has its own privacy and data processing peculiarities, that are not necessarily related to the technology (e.g. identifying roles and liabilities among people accessing health data).

I found a problem, how can I communicate with you?

You can always use our contact form or email us .

If you find a security issue or a system bug, please send an email to security@chino.io. Please do not share it on forums, social networks or any other communication method.

Why Chino.io?

Chino.io was born as an acronym within a research project standing for Cloud Health INterOperability. Although the project was a different one, we kept the same acronym mainly because our mission and vision didn't change.

What if I have a question that is not answered here?

You can always contact us. We will be happy to answer all your questions.