Information for your IT

The connection is secured via an asymmetrical encryption. A random and anonymous channel ID is requested by the clinic software from our API in the clinic. The clinic locally generates a set of keys. The channel ID is given to the patient together with the public key of the clinic, the clinic’s ID and a randomly generated challenge in form of a printed QR code.

The channel ID cannot be traced back to a specific person by us. The allocation can only take place in the clinic. If the patient scans the QR code with the Hope App, the app generates an individual set of keys on the end device. The public key is transferred to the clinic via our API: The challenge from the QR code serves as an authentication in order to verify that the request stems from an authorised person.

When the connection is established, the secure channel is activated and cannot be connected to another end device. At no time during the process can we read data that is sent via the API, regardless of the direction, because the private keys never leave the clinic or the end device.

The channel ID being used for the allocation of messages can only be traced back to personal data in the clinic. No incoming connections are built between our server and MedITEX. All connections are established from MedITEX. No additional software is required. Everything happens in MedITEX, including end-to-end encryption.