I briefly considered whether I should perhaps only give 4 stars for quality, because then one or the other bug is in it. But really only briefly, because that's how it is when you not only manage something but constantly develop it further.
We (alternative practitioner, osteopathy, physiotherapy; 3 employees) have been using Lemniscus for a little over three years now and I really don't want to miss it anymore! The online appointment booking and the fast sending of "appointment slips" by mail saves us the registration power and discussions if a patient has transferred his appointment wrong! Through the informative communication by mail and in social media and the consistent certification (e.g. DSGVO), Lemniscus provides confidence in the (data) security of the software not only for me as a practice owner but also for our patients.
How would I rate the price/performance ratio? More than fair! I have more services in the software than I need, some services could be a bit fancier (e.g. the online appointment booking as a calendar view). But for these services there is usually the possibility to integrate external service providers. These are then more expensive than Lemniscus itself although they only complement a part. The only thing I really miss is an optimization for mobile devices both in the online appointment booking and for me in the software itself. But maybe it's still coming (like so many innovations in the last years).
Would you recommend lemniscus to others? Yes, I already have a few times!
Show original
Translation
We quote from the web:
According to Art. 24 para. 1 sentence 1 DSGVO, the Verantwortlichy, must implement appropriate technical and organizational measures to ensure that the processing of data complies with data protection. (These are the infamous "TOMS".) These must also be proven, which is why the list of TOMS is important.
Art. 32 DSGVO concretizes this obligation with regard to data security compliance. According to Art. 32 (1) GDPR, the controller is obliged, among other things, to take appropriate technical and organizational measures, depending on the probability of occurrence and severity of the risk, to ensure a level of protection appropriate to the risk.
The Bavarian State Office for Data Protection Supervision has published a checklist for medical facilities with test criteria. The interesting point is that two-factor security is generally considered necessary for medical data. In addition to classic passwords, other access factors are required to adequately protect particularly sensitive access points.
This applies in particular to the storage of patient data in the cloud. Many providers offer such two-factor authentication, but in some cases it must be activated by the user.