====== Security ======

GemsTracker is designed secure from the ground up and GemsTracker installations regularly undergo penetration tests to bring the GemsTracker software up-to-date on the latest security issues. Out of the box a GemsTracker installation is secure, unless you make it unsafe.

GemsTracker installations that contain real patient data should always use a secure hosting platform that is at least ISO 27001 certified. In the Netherlands the provider should even be NEN 7510 certified.

We also have an additional page on adding extra security to a LimeSurvey installations:

  * [[..:LimeSurvey Security Settings]]

You can add more secure login requirements by adding two factor authentication (2FA).
Please go this the 2FA page for more information:

  * [[.:2FA|2FA page (dutch)]] -- key user information
  * [[.:2FAuser|2FA user manual page (dutch)]] -- end user information