Clinerion Ltd Contact Details:
Main address: Margarethenstrasse 47 4053 Basel, Switzerland ,
Tel:+41 61 865 60 60 , E-mail: info(at)clinerion.com Website:

Clinerion Quality Risk Management System

Clinerion Quality Risk Management System

Cloud-based risk management system for controlling risks to clinical trial quality.

Clinerion Patient Recruitment System

Clinerion Patient Recruitment System

Optimized study design, precise site selection and faster patient recruitment for clinical research - in real time.



Patient Privacy

Independently Assessed.

Clinerion's Patient Recruitment System has been evaluated by an independent, third party expert* and is confirmed to be fully compliant with data privacy regulations in the USA (HIPAA) and the EU (Directive 95/46/EC).

* NB. The expert’s evaluation is based on the design of the Clinerion PRS tool suite and the practices according to their design, as of July 25, 2016.

Clinerion’s Principles of Patient Privacy.

Clinerion is committed to the principle that patient data belongs to the patient. It is for the patient to decide where and how their data is stored, distributed and shared.

Committed to the trustworthy re-use of health data for research, Clinerion’s search results and analytics only aggregate data. Patient Recruitment System (PRS) runs inside the secure IT infrastructure of a hospital. All patient data inside the hospital’s PRS server is de-identified. No additional permissions for the data use are required. No patient data is transferred outside the hospital.

PRS is regularly audited by an independent, third party expert and is confirmed to be fully compliant with data privacy regulations in the USA (HIPAA) and the EU (Directive 95/46/EC).

For the responsible use and disclosure of health data without the need for patient consent, PRS follows the standard methods for Safe Harbor and Expert Determination established by HIPAA.


Privacy Standards

PRS was developed following “Privacy by Design” methodologies. Patient privacy is maintained through procedures and policies ensuring consistency with:

  • Good Clinical Practice (GCP).
  • Good Pharmacoepidemiology Practice (GPP).
  • The Health Insurance Portability and Accountability Act (HIPAA).
  • The EU Data Protection Directive (95/46/EC)
  • The upcoming EU General Data Protection Regulation (GDPR).
  • The laws of Switzerland (Bundesgesetz über den Datenschutz (DSG)).
  • The laws of Turkey (6698 Kişisel Verilerin Korunması Kanunu).
  • The security framework requirements of the ISO 27001 standard.
  • The Electronic Health Record (EHR) Association's Developer Code of Conduct.


Operational Principles

  • De-identification: The PRS server is located within the secure hospital infrastructure. Patient data is stripped of all identifiers within the hospital’s own system.
  • Aggregation / anonymization: PRS queries only de-identified patient data. Results are in fully anonymized and aggregated form – e.g. the count of candidates for a feasibility study.
  • Data protection is enabled by anonymization / de-identification, two-way encrypted data transfer, encrypted storage, and access control mechanisms.
  • Clinerion ensures that PRS users understand and treat their access with appropriate regard for information security.
  • All critical activities are covered by Standard Operating Procedures and best practice policies.
  • All Clinerion personnel are under secrecy obligation and trained in this security framework structure

Methods for De-identification of Protected Health Information

For the responsible use and disclosure of health data without the need for patient consent, PRS follows the standard methods for Safe Harbor and Expert Determination established by HIPAA.

News / Events / Webinars