Dear Team, Greetings !!!
This is Harishankar, Product Manager from EMD Systems Software Pvt Ltd, India. We are a product development company, developing Radiology Information Systems for USA and Japan Markets. We have a need of implementing few data visualization features for different user personas of a Radiology center. And we found Apache SuperSet would be a right tool to use with our application. Since this involves patient related data, there is a need for any tool to be HIPAA compliant so that no PHI level of information gets breached out of the system. We use PostgreSQL database. We have few questions related to HIPAA compliancy of the tool before proceeding to decide whether or not to go with this tool. 1. Does this have separate user authentication and authorization framework build within? 2. Can SuperSet use SSO? Can SuperSet support OAuth2.0 authentication? 3. How the data is being maintained in-transit while fetching from database? Is it secured (HTTPS) or is the data encrypted? 4. Does SuperSet cache any data in the deployed servers or Cloud, that is being fetched from the database? Or does it cache only the query statements? 5. Is there any notification mechanism available in case of any data breach through SuperSet? If you can answer these questions for us, it would be helpful for us to evaluate. Regards, Harishankar R, Product Manager [cid:eef05734-e56f-44b7-8719-a9be28af4a2f] Disclaimer: This message and any attachments are the property of EMD Systems Software Private Limited and are intended only for the use of the intended recipient(s) are confidential and may be privileged. If you are not the intended recipient, you are hereby notified that any review, re-transmission, conversion to hard copy, copying, circulation or other use of this message and any attachments is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e mail and delete this message and any attachments from your system.
