Frequently Asked Questions

Yes, it does. We have recently (Aug 2021) had it reassessed by our lawyers and we will establish specific terms and conditions for the app which we upload for our clients when we establish their profile.

Yes. This is the main reason for developing the platform. I’m In comes with a suite of reporting functions that allows you to extract, download and report on your data easily through the user interface into multiple forms excel, pdf, png. Please note that for security purposes certain information is encrypted at the developer level meaning it is not possible for the developer to extract identifiable data i.e. name, suburb, date of birth in raw data format.

Yes, you own your data, we are simply the caretakers of it for you. Once your project is completed you can delete your data, or it can be stored for a period of two years.

Yes. As system administrators we can access your data, but will only do so if required to support you and your staff to operate the I’m In platform.

The data is hosted in Australia on Amazon Web Services infrastructure based in Sydney. The software was built by app developer C9 https://www.c9.com.au/. C9 was originally established in Tasmania, but have now relocated to Brisbane.

The hosting includes daily on-server backups for 7 days. Weekly backups to cloud storage on Amazon S3 for long-term storage up to 90 days. In addition, VM snapshots are taken weekly of all services with a lifecycle of 8 weeks before being overwritten. Should additional backup strategies or levels be required we are open to discuss.

Yes. This is done through us by our data host and app developer C9. If a breach occurs, formal measures are in place to disclose and disseminate the breach to Healthy Tasmania to enable them to inform their client as per standard industry best practice.

Yes. Our Healthy Tasmania staff (n=5) have an understanding of the importance of privacy and relevant Acts and have signed a commitment to abide by the Act’s principles in the performance of their duties. In addition, the hosting environment that houses both the application tier and databases are restricted to a limited number of senior C9 staff each with over 12 years of experience in development and systems administration to provide safeguards of inappropriate access to data.

The platform has been developed to abide by OWASP development practices one of the industry de-facto standards. Servers have been secured by multiple firewall levels and to only be accessible to specific IP addresses with limited ports open for communication of web traffic to reduce attack footprints. Additional security has been added for the database server allowing only communication for connections to the database server from the application servers with no external access. The hosting as indicated is on Amazon Web Services the Infrastructure itself is covered by Amazon https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/infrastructure-security.html. Sensitive information nominated by Healthy Tasmania has been encrypted at rest for additional security. Lastly, all services are protected by real-time monitoring metrics, malware and virus scanners.