Security & Privacy
Strata Health’s platforms are built
to be secure from the ground up

We Take Security Seriously. Always
These are the Tent Poles we Live By:
- Comply to all applicable laws and regulations and contractual obligations
- Implement Information Security Objectives that take into account information security requirements following the results of applicable risk assessments
- Adoption of a security manual and procedures to provide direction on information security matters relating to any interested parties who come into contact with its work
- Communicate these Objectives and performance against them to all interested parties
ISO 27001:2013 Standard
ISO 27001 is the globally recognized standard for information security management and organizations that are certified to this standard have shown that they adhered to the principles laid out by this standard and continue to operate a Information Security
Management System.
Strata Health is audited and certified to this standard on an annual basis. You can download and view our current certificate here

Privacy - It's not Just a Buzzword to us
Protecting personal data is at the centre of our products
- Minimal Data Set - We believe that we should only collect the personalinformation we need to process patient care. Nothing more. Period.
- Break the Glass - We know that there are exceptions to every rule so we havebuilt override functionality to allow a user access to locked down information. This functionality requires a deliberate override and is audited, reported on and caneven alert the appropriate privacy professionals when used.
- Location Controls - Our system can be used in a single location or across a hugehealthcare organization with multiple locations, we provide the ability to restrictaccess by location so only those in the circle of care can access a patient'spersonal data.
- Consent Management - We think that it is important that users of our systemcollect the correct consent from patients and we give them the ability to lockdown access should that consent be withdrawn.
NHS Data Security and Protection Toolkit
(Formerly IGSoC)
The NHS in the UK created an Information Governance standard called the Data
Security and Protection Toolkit which is an online system which allows NHS
organizations and partners to assess themselves against Department of Health
Information Governance policies and standards.
Strata Health is committed to meeting this new standard and in in process of converting from our March 2018 IGSoC compliance (Status of Compliance can be found at this link) to meeting this new standard.

Quality Management - Why we believe in it
We have always prided ourselves on our customer service and ensuring that our customers are happy, so we decided to implement a Quality Management System (QMS) to backup this belief.
What can our customers expect from our QMS:
- Improved customer satisfaction
- Streamlined processes
- Improved decision making
- A culture of continuous improvement
ISO 9001:2015 Standard
ISO 9001 is the globally recognized standard for quality management and companiesthat are certified to this standard have demonstrated that the quality is considered in allareas of the companies management and that a company has committed to continuouslyreview and the management processes.
Stata Health is audited and certified to this standard on an annual basis.You can download our current certificate here.


Discover Strata Health:
request more information.
Curious about features, a demo, or whether Strata Health is the right solution for you? We’re ready to answer any and all of your questions.
NOTE: We are a software solutions company, and are often confused for Strata Health Group; a health insurance provider in the USA. Please click here if you would like to be redirected to the appropriate website.