Achieve Global Data Compliance

Expanding your diagnostic genomic assay into new geographical markets.

The Challenge

Sensitive data processed for clinical and research purposes is subject to local data privacy regulations. International data security compliance and certification requirements have significant requirements for entry, which may slow, or altogether prohibit expansion into global markets.

The BlueBee Solution

BlueBee has implemented extensive security measures to ensure the highest level of protection of sensitive human genomics data. All of our product technologies and services, including the BlueBee Genomics Platform, customized features and data centers are compliant with all applicable local and global regulations and standards. The combination of our high-performance computing (HPC) data center infrastructure with certification compliance allows our partners and end users to meet even the most stringent security requirements set forth by governing bodies worldwide.

The BlueBee Genomics Platform features multi-layered data security. Deployed on private cloud and running on dedicated servers, BlueBee ensures the highest degree of isolation. In addition to physical security controls, analytics pipelines are containerized within boundaries that are set out by the platform; this includes access to data and resource consumption.

To comply with local regulations, BlueBee offers a distributed model whereby genomics data files and any related metadata can be stored in the region of choice through “Data Residency Control.” BlueBee guarantees that data resides only in the location of choice. This type of control mechanism is essential for compliance with local regulatory requirements, such as The General Data Protection Regulation 2016/679 (GDPR), which state that genomics data cannot leave a defined region and needs to be operated according to local data privacy regulations. Data Residency Control allows BlueBee users to have one single interface for managing projects and data processing across the globe, in defined locations according to user requirements. To accomplish this, BlueBee’s private cloud operates discretely in numerous global regions and provides users with elaborate functionality for audit trails, encryption, data storage and retrieval.

BlueBee’s data protection and security controls have been successfully audited by various internationally recognized standards. Our platform is certified by recognizable brands and organizations adhering to the highest standards of data security. Certifications: GDPR, HIPAA, IG SoC, PIPEDA, PHIPA, ISO 13485, ISO/IEC 27001 & 27002, CSA STAR.

Standard / RegulationDescriptionBlueBee Platform & Solutions
ISO/IEC 27001:2013International standard for the establishment,implementation,maintenance, and continuous improvement of information security management sytems.
ISO 13485:2016ISO 13485:2016 is an international standard for mediacal devices that specifies requirements for a quality management system, where an organization need to demonstrate its ability to provide (in vitro diagnostic) medical devices and related services that consistently meet customer and applicable regulatory requirements.
HIPAAA regulation governing the processing of protected health information (patient data) in the US.
Information Governance Toolkit(NHS,UK)Information governance standards (including data protection laws as under the Data Protection Act 1998) applicable to health data in the UK.
Cloud Security Alliance (CSA) security,Trust & Assurance Registry(STAR)A detailed compilation of global industry-based standards for cloud service providers.
Personal Health Information Protection Act 2004(PHIPA)Data protection rules regulating the collection, use and disclosure of personal health information in Ontario,Canada.
Personal Infromation Protection and Electronics Documents Act 200(PIPEDA)Candian federal legislation governing the collection,use and disclosure of personal health information by organizations in the course of commercial activity.
NEN 7510-2011The standard for information security management in healthcare in the netherlands.
Genaral data Protection Regulation (GDPR) (EU) 2016/679EU regulation on data protection and privacy for all individuals within the European Union (EU) and the Europeaon Economic Area (EEA).

Learn more about our security features in our “Security & Compliance” white paper.

The BlueBee Advantage

BlueBee’s secure and certified private cloud genomics data analysis platform provides our genomics assay partners and service providers the freedom to grow into new geographical frontiers and expand on a global scale, without having to invest additional time and resources into data security and compliance. Data residency is assured without the need to manage multiple data centers separately, while allowing for secure collaboration and data sharing. By offering a comprehensive spectrum of data security certifications, we serve to significantly reduce the administrative and financial burden for our clients to achieve data protection and compliance.

We picked a great partner…BlueBee’s worldwide data center contracts and security and compliance allowed us the portability of expanding the system anywhere we need it.

Chris Wilson

Director of IT
Agendia

Ready to get started?

A BlueBee genomic data analysis expert is happy to help.

Related Stories

Your Assay with Integrated Data Analysis

Removing end user data challenges with an assay-integrated data analysis pipeline

Your Assay with Integrated Data Analysis

Removing end user data challenges with an assay-integrated data analysis pipeline

Scale for Demand

Scaling clinical and research service lab data pipelines for genomics growth

Insight Generation

Knowledge mining and management with a decentralized network of stakeholders

Insight Generation

Knowledge mining and management with a decentralized network of stakeholders

Request A Demo