As a researcher, it is your responsibility to protect the sensitive data you collect and stay up-to-date with all the latest privacy and security regulations. We diligently ensure that our platform always meets or exceeds the compliance regulations in the regions we operate.
Our security and compliance capabilities meet the highest standards. In fact, since 2021 we’ve passed IRBs from over 50 of the world’s leading institutions including Stanford, Harvard, MIT, Yale, UCSD, and UC Berkeley.
Your work is difficult enough without having to keep track of the ever-changing rules and regulations around data and privacy. We work continuously to ensure compliance with HIPAA, GDPR, GCP and more.
We value your trust, and we will do our best to protect it. All participant data remains anonymized and no third party has access to any data on Labfront. Your project data is yours, and yours only.
Labfront adheres to ICH-GCP, HIPAA, SOC 1/2/3 and GDPR. We keep up to date with the regulations so you don’t have to.
Unlike big-tech, we believe in data privacy. You control your data. We will never sell your data, ever. Period.
Labfront is built with the best practices in security in mind. Features like secure encryption that protects your data both at rest and in transit are tablestakes.
We're here to help with any questions you have about Labfront's privacy and security policies. Don't hesitate to contact us at firstname.lastname@example.org.
Yes, we sure do and we've passed all IRBs since we've been active. You can find our supporting documentation for IRB in this article.
We typically save research data for 3 years after study completion, following the write-up of the results. For relevant studies, Labfront will also be compliant with the NIH Data Management and Sharing (DMS) Policy, effective January 25, 2023. We provide the ability to delete all data if requested by the researcher as well.
You may refer to our security and privacy policies which are available below:
To give further confidence to our strict policies, we have successfully supported IRB applications with Labfront as part of the study. In fact, we've passed all IRBs since we've been active . You can find our IRB support documentation here.
Furthermore, Labfront intentionally does not have access to your project’s data or ask participants for their personal information. Instead, we use a unique invite code to connect participants to the platform and your project.
You own your data and we do not access it. Our privacy and security policies are very strict (including not accessing your project data), these standard policies are usually enough to support grant applications, but we can provide additional guidance or information if needed.
Yes, we have completed the HECVAT form that many higher institutions use. You can contact us at email@example.com to request the documentation.
We currently only support U.S. data centers and the data is stored in Virginia, America. You can view our privacy and security information here. However, we're currently working with several institutions outside of the U.S., including Canada, Switzerland and Australia.
Since the Labfront service includes a variety of applications (eg. mobile app, web dashboard), we provide an all-encompassing Terms of Service instead of a simple EULA. If your institution asks for a EULA, you can link them directly to Labfront's Terms of Service.