The NPEC's web-based application will be fully managed and hosted by Castor-EDC. Castor is officially certified in the field of Information Security (ISO 27001 - Standards for Information Security Assurance).
The ISO/IEC 27000 is a family of standards related to Information Security Management Systems (ISMS). The ISMS standard provides a systematic approach to managing sensitive data so that it remains secure by applying a risk management process. ISO/IEC 27001 is the best-known standard providing requirements for ISMS to keep information assets secure.
Castor EDC runs on fully managed virtual private servers, which means that the entire cloud server and network resources are dedicated to Castor EDC hosting services and are not shared by other hosting services.
The NPEC system requires a two-factor authentication in order for users to gain access. The user must then provide a valid username/password combination in order gain access to the NPEC system. The online system is configured so that users only have access to the data pertaining to the NPEC audit which they are contributing to within their maternity unit/hospital. Only Administrator users will have access to the System Configuration section. This is supported by Castor EDC whereby administrators can enforce such security policies as well as regular password rotation. Sensitive data can also be encrypted at rest, using libsodium with encryption keys from Castor EDC.
To access Castor EDC, please click here.
For futher information, please contact Indra Campillo by phone or by e-mail.
Telephone: 021 420 5024