Cambridge, MA, October 27, 2020 — TriNetX, the global health research network that revolutionizes clinical research and enables discoveries through the generation of real-world evidence (RWE), has announced that it has successfully renewed its certification to the rigorous ISO/IEC 27001:2013 Information Security Standard. TriNetX’s certification, which demonstrates the organization’s determination to provide the highest level of information security for its clients, was originally issued in 2017. A key component of the renewal, which is required every three years, was to expand the scope of the certification to include TriNetX’s Ghent, Belgium office.
“With the continued global focus on data security, maintaining the certification of our information security management system (ISMS) is one of our highest priorities,” said Kshitij Kathuria, VP Security and Compliance and Security Officer at TriNetX. “We vow to protect the data of our members with transparency while establishing the highest standards for securing this asset and constantly improving our ISMS year after year.”
ISO/IEC 27001:2013 is the globally recognized standard for instituting and maintaining information security management systems in organizations. It uses a risk-based approach to specify the requirements for establishing, implementing, maintaining, and continually improving an ISMS within the context of the organization. The ISO/IEC 27001:2013 re-certification strengthens TriNetX’s position as a leader in the field of healthcare research.
“Getting re-certified and adding our Belgium office to the scope, emphasizes to our customers and members that we have all the needed controls in place, not only in our US and EU Corporate offices, but most importantly in the TriNetX Platform to guarantee confidentiality, integrity and availability of these systems,” said Gadi Lachman, CEO of TriNetX.
Following initial certification in 2017, TriNetX underwent surveillance audits in 2018 and 2019. This year, TriNetX went through a full audit of documentation for 10 major clauses of the standard and a review of the implemented processes to comply with 114 commonly accepted information security controls. The Ghent office also passed the full audit so they could be added to the scope of the certification.
TriNetX is one of a select group of companies in North America that have gone through the certification process.
TriNetX is the global health research network that connects the world of drug discovery and development from pharmaceutical company to study site, and investigator to patient by sharing real-world data to make clinical and observational research easier and more efficient. TriNetX combines real time access to longitudinal clinical data with state-of-the-art analytics to optimize protocol design and feasibility, site selection, patient recruitment, and enable discoveries through the generation of real-world evidence. The TriNetX platform is HIPAA and GDPR compliant. For more information, visit TriNetX at www.trinetx.com or follow @TriNetX on Twitter.