Primary Health Networks have taken advantage of technical advancements. Primary Health Insights is built with best in class data security and cyber protection for primary health data.  

Data security spans physical (data centre) security, platform and network security, proactive threat detection, auditing and compliance with legislation, regulations and industry-specific certifications. Primary Health Insights provides all of these aspects of security and encrypts data by default both in transit and at rest.

Data security.jpg

Primary Health Insights utilises:

  • the Microsoft Azure data platform, which is accredited to ISO 27001 compliance and has met the requirements of the Australian Government for secure storage of both ‘sensitive’ and ‘protected’ information through the Information Security Registered Assessors (IRAP) program. Many government agencies, both State and Federal, store information of this classification on the Azure platform, including health information.

  • next generation firewall technology

  • advanced monitoring, notifications and logging capability of all platform user activity

  • advanced Threat Protection as an additional layer of security intelligence that detects unusual and potentially harmful attempts to access or exploit storage accounts 

  • rigid internal network separation to prevent data leakage between PHNs

  • robust role-based access controls to limit access for every individual dataset

  • multi-factor authentication for all users.

An annual penetration test is conducted by an expert, independent contractor.  To date all attempts at penetrating platform security have been unsuccessful. All data, including backups and disaster recovery, remain in Australia.