User's blog

Category: Data and Ethics

  • Compliance with Privacy Regulations

    DecenTrialz operates in adherence to the following established compliance standards and regulations:

    • HIPAA (Health Insurance Portability and Accountability Act)
    • ISO 27001 Certified

    Our Commitments

    • Clear disclosures and consent workflows
    • Data minimization and purpose limitation
    • Right to access, correct, or delete your personal data
    • Transparent communication in case of any data breach

    Key Note: All platform features and workflows are reviewed by internal and external legal advisors to ensure compliance with U.S. and international research ethics.

  • Data De-identification and Aggregation

    To safeguard privacy, DecenTrialz uses standardized methods to de-identify participant information before it is used in analytics, reporting, or shared with sponsors and CROs.

    How Data Is Protected

    • Removal of direct identifiers (name, phone, address, etc.)
    • Aggregation across demographics and geographies
    • Use of secure pseudonymization techniques for longitudinal tracking

    When De-identified Data Is Used

    • For performance benchmarking across sites
    • To identify underserved communities
    • In reporting recruitment trends or dropout rates

    Key Note: De-identification procedures follow HIPAA Privacy Rule standards and are reviewed regularly for compliance with global data ethics norms.

  • Who has Access to Participant Data

    Access to participant data is strictly controlled and tiered based on role, function, and regulatory requirements.

    Access Levels

    • Participants can view and manage their own health profile, trial participation, and data-sharing settings.
    • Research Sites can access de-identified or limited data needed for pre-screening. Full access requires participant consent.
    • Sponsors and CROs only receive anonymized or aggregated data unless an IRB-approved agreement permits access to identifiable information.

    Access Protocols

    • All users must be authenticated before accessing any dashboard
    • Role-based permissions ensure data minimization
    • Audit trails log all access and data interactions

    Key Note: DecenTrialz does not sell participant data or share it with third parties for advertising or marketing purposes.

  • How Participant Data is Collected

    When users engage with DecenTrialz, we collect only the information necessary to support matching, study enrollment, and communication.

    Types of Data Collected

    • Personal details: name, age, gender, contact information
    • Health-related inputs: condition, symptoms, medical history
    • Study-specific inputs: location preferences, availability, trial status
    • System interactions: survey responses, task completion, engagement history

    Data Collection Methods

    • Direct input by participants through forms and dashboards
    • Data collection includes pre-screening health questionnaires to confirm eligibility
    • Passive system data (e.g., platform usage for reminders and alerts)

    Key Note: No sensitive health data is collected without explicit participant consent. Consent is obtained through transparent disclosures and IRB-approved consent forms.