FAQs — Your Guide to Dedalus

At Dedalus, protecting the privacy and confidentiality of client data is a top priority. We continuously evolve our management systems and enhance our team’s expertise to stay aligned with the latest data protection standards, including full compliance with the General Data Protection Regulation (GDPR).

Transparency and collaboration are central to our approach, helping to strengthen the entire value chain and safeguard our corporate integrity. Dedalus also invests in optimising its solutions with a focus on emerging data security requirements and regulatory frameworks—ensuring a proactive and innovative stance on risk prevention and compliance.

Yes. All Dedalus solutions are designed to comply with the General Data Protection Regulation (GDPR), with features such as role-based access, user consent management, and encrypted data handling.

Dedalus ensures compliance with GDPR and local data privacy laws through governance policies, legal monitoring, and dedicated teams. The company applies lawful data processing, transparency, and accountability principles.

Dedalus adopts a “Privacy by Design and by Default” approach, embedding privacy principles in every phase of software development. This includes access control, data minimisation, risk management, and user transparency.

Dedalus solutions enable providers to meet data protection requirements through secure workflows, encrypted communication, and adherence to clinical data protection standards.

You can download the Health Claims Change of Details Form here. If you cannot locate the form, please contact Dedalus Support and we will provide it promptly.

Dedalus ensures software security through a structured, multi-layered strategy that protects its IT infrastructure and digital health platforms. We implement robust safeguards for all endpoints—whether computers or smart devices—and continuously monitor systems to defend against advanced cyber threats and malicious intrusions.

Dedalus manages cybersecurity threats and incidents through a combination of proactive and reactive measures, focusing on continuous improvement, collaboration, and adherence to industry standards. We prioritize data protection, conduct regular audits, and have established processes for incident response

Yes. To validate our defences, we regularly conduct penetration testing, security audits, and compliance checks aligned with international standards. These proactive measures help us strengthen software resilience and ensure data integrity across the entire organisation.

Dedalus utilizes a multi-faceted information security governance model that includes compliance with GDPR, ISO 27001 certification, an Information Security Management System (ISMS), and a dedicated compliance manager. This model also emphasizes prevention through a secure and established IT framework and adherence to applicable data protection laws.

Yes. Dedalus applies ISO/IEC 27001 standards to its security practices, offering a certified approach to managing data confidentiality, integrity, and availability.

Dedalus utilizes an Integrated Management System (IMS) Policy for information security, adhering to the principles of the ISO/IEC 27001 standard, which includes the Information Security Management System (ISMS). This system emphasizes the confidentiality, integrity, and availability of information (the “RID” paradigm). Dedalus also employs a Compliance Manager and adopts the 231 Model and Code of Ethics, alongside undergoing regular audits and certifications like ISO 27001.

Dedalus has adopted an Organisational, Management and Control Model (Model 231) in accordance with Legislative Decree 231/2001 to prevent crimes within the company and promote an ethical, transparent corporate culture. This model includes a Code of Ethics, a Supervisory Body, and specific procedures to identify and mitigate legal and compliance risks.
More information

Dedalus provides high-availability platforms with cloud hosting options, disaster recovery plans, and 24/7 system monitoring for mission-critical healthcare operations.

Dedalus follows a formal incident response process that includes root-cause analysis, client communication, and corrective actions to prevent future disruptions.