JodaCare app

The JodaCare app from 2016 is still running!

The original app, first released in 2016 and upgraded in 2018, remains in full operation while we build the new JodaCare 2.0.

Open the existing app →

Security you can trust

JodaCare is built with security at the core. We take privacy and data protection seriously.

Security

How we protect your data

JodaCare is designed to safeguard security and privacy for patients, relatives and staff.

ID-porten sign-in

Security level 4
JodaCare supports sign-in with ID-porten at security level 4, along with Vipps and email with one-time code for roles that do not require the highest security level.

GDPR compliant

GDPR compliant
JodaCare is developed in line with the GDPR and the Norwegian Personal Data Act, with procedures for data processing, access and deletion.

Data processing agreement

Data processing agreements are in place or being signed with all third parties that process personal data, and every municipal customer is offered a DPA at onboarding.

Data stored in Europe

EU storage
The database is located in Stockholm (Supabase), hosting runs in Stockholm (Vercel), AI services are European through Mistral in Paris, and email goes through a European provider (Brevo).

Full traceability

Access to patient data is logged automatically with timestamp and user ID, and the municipality has full oversight of who viewed and shared information.

Consent-based sharing

Information is shared only with consent from the service user or guardian, and the system supports sharing in line with the person's rights.

Privacy in AI processing

JodaCare automatically removes names, addresses, dates of birth, diagnoses and place names from all text before it is sent to AI services.

Secure file storage

Images and files are stored in private storage and can only be accessed through signed URLs that expire after 24 hours.

Additional safeguards

Encrypted communication

All communication between your device and JodaCare is encrypted with TLS 1.3.

Access control

Fine-grained access control ensures users only see information they are entitled to.

Regular security testing

We carry out regular internal security reviews and code audits of the platform.

Law and compliance

Norwegian Health Personnel Act

JodaCare supports legally required collaboration between health professionals, relatives and partners. Sharing follows the duty of confidentiality and duty to inform under the Act.

Personal Data Act and GDPR

We process personal data in line with the Personal Data Act and the EU GDPR, including consent, access, rectification and deletion procedures.

Patients' and users' rights

JodaCare respects the right to information and participation. The design strengthens the ability of patients and relatives to take part in decisions about health and care.

Trust indicators

2016
In operation since
Horten, Lier, Oslo
Municipalities etc.
Level 4
Security level
EU
Data location

Questions about security?

We are happy to explain in more detail how JodaCare works and how your data is protected.

Contact us