Secure billing module

Why this module?

Email is a simple means of communication, often used to send invoices electronically. However, in certain fields, such as healthcare, sending sensitive information by email does not comply with the Federal Act on Data Protection (FADP).

Indeed, emails are not considered a secure means of communication, as they are not encrypted and transit through numerous intermediaries who potentially have access to them.

As healthcare professionals, you are responsible for protecting your patients' data. By not properly securing your invoices, you run the risk of compromising your patients' confidentiality and exposing yourself to sanctions.

It is in response to this problem that we have developed a secure invoice sending solution, specifically designed to meet the requirements of the Swiss Data Protection Act.

This module enables you to continue communicating with your patients using your own email address, while ensuring the confidentiality of the information transmitted and complying with current regulations.

It remains possible to send invoices by unsecured (normal) email, but this requires special legal provisions to be put in place.

Are my emails secure?

Some email services emphasize the fact that they ensure the confidentiality of emails. Most of the time, this only means that emails will not be used for other purposes (advertising, training AI models, etc.). Emails sent from these services will therefore not necessarily be secure.

For an invoice sent by email to be secure and compliant with the Swiss Data Protection Act, it must be protected throughout the entire chain (from the therapist to the patient). When using a service that preserves confidentiality, only the first link in the chain relating to the sender of the invoice is secure. In this case, the email will not be protected during transmission or in the recipient's (patient's) inbox.

There are few services that offer end-to-end security suitable for sending invoices. Furthermore, they are often expensive and not very intuitive. They can generally be recognized by the fact that they require validation of an SMS code before the content of the email can be accessed.

Operation

Sending a secure invoice from the OptaMed application is very simple and can be activated with a single click.

The invoice is encrypted on the therapist's computer before being sent to our servers (as the invoice is encrypted, no one but the patient can access it). A normal email containing a secure link to the invoice is then sent to the patient, directly from OptaMed and using the therapist's email address.

To retrieve the invoice, the patient clicks on the secure link received by email, then has to prove his or her identity by validating a code received by SMS. Once validated, the invoice is decrypted in the patient's browser and can be downloaded.

Benefits

Our solution offers many advantages:

• Invoices sent in compliance with the new Federal Act on Data Protection (nFADP)
• The invoice is encrypted and protected from unauthorized access: only the patient is able to retrieve it
• One-click activation of encryption, directly in the OptaMed application
• Any email address can be used without reducing the security or confidentiality of the system
• No need to ask for patient consent for unsecured communication
• The invoice is transmitted professionally and gives patients confidence in the confidentiality of their data
• Patients can decrypt and retrieve their bills easily and transparently

Price

This module is optional and its price (excl. VAT) is:

• 45 CHF / year for sending 10 secure invoices each month (3.75 CHF / month)
• 90 CHF / year for sending 25 secure invoices each month (7.50 CHF / month)
• 150 CHF / year for sending 50 secure invoices each month (12.50 CHF / month)
• 240 CHF / year for sending 100 secure invoices each month (20.00 CHF / month)

Different billing credit packs can also be purchased at CHF 0.50 / invoice (excl. VAT).