Medical Practices, Clinics & Care Homes

Medical secrecy, EPR, OPDP. We build on these pillars, not around them.

Swiss medical hosting, OPDP compliance, EPR/CIP integration and on-premise medical AI for practices, care homes and clinics. Medical secrecy (art. 321 SCC), encrypted backups. Geneva, Lausanne, Valais, Ticino.

Request a practice audit See our method

5+ years of Swiss IT experience

Geneva-based team

Used to regulated industries

100% open source, no vendor lock-in

IT pitfalls in Swiss healthcare in 2026

Between EPR-driven digitalization and medical secrecy demands.

Patient records on Google Drive

Photos, scans, reports shared via Gmail or Drive. Out of FADP-health, out of OPDP, and you risk a complaint to the cantonal authority. Several Romandy practices were sanctioned in 2024.

EPR/CIP incompatible with your current software

The Electronic Patient Record (EPR) is mandatory in several cantons. Your current software (Achilles, Vitodata, MediWin) either doesn't connect, or only for CHF 5,000 of annual services.

Local backups = 1 disaster = end of practice

A single hard disk in the closet means 30 years of patient files can vanish in a storm or ransomware. LPGA art. 12c requires 10-year retention.

Admin time = 30% of your day

Report entry, referral letters, prescriptions, insurance requests. A medical AI assistant (FADP-health compliant) cuts this time in half - without any patient data leaving your practice.

What we do for healthcare

Aligned with OPDP, FADP-health, art. 321 SCC and the daily life of a practice.

Medical practice cyber audit

Full audit: OPDP compliance, encrypted backups, MFA, segmentation, patient-record classification, post-incident plan. From CHF 3,000.

Swiss medical hosting

Migration of patient records to a certified Swiss cloud (Infomaniak, Exoscale). Compatible with your practice software. End-to-end encryption, redundant backups.

EPR/CIP integration

Connect your practice software to the Swiss Electronic Patient Record. IHE-XDS profile implementation, strong authentication via CertEPD.

On-premise medical AI

Local LLM (Ollama) to help draft reports, referral letters, consultation coding. Patient data never transmitted externally.

Our method - battle-tested on Swiss ground

Four pragmatic steps. No fluff, no slide-ware.

48h diagnostic

Targeted audit: interviews, read-only access, technical review. You leave with a written assessment and 3 quick-wins to action immediately.

Priced action plan

3-12 month roadmap, prioritized by risk and ROI. Transparent price ranges. We tell you what can wait - and what cannot.

Delivery

Our team ships in short sprints. You validate at each step. The code, infrastructure and procedures belong to you.

Run & continuous improvement

Maintenance, supervision, regular security reviews. We remain your Swiss point of contact, with no offshore hotline.

100% Swiss stack & partners

Tech sovereignty: everything we deploy stays auditable and hosted in Switzerland.

Hosting

Infomaniak (Geneva, Zurich), Exoscale, OVHcloud Geneva - ISO 27001, Swiss datacenters.

Cybersecurity

Wazuh SIEM, Suricata IDS, WireGuard VPN, YubiKey FIDO2, Authelia, Vault.

On-prem AI

Ollama, Mistral, vLLM, Qdrant RAG, Flowise, n8n MCP - LLMs with zero data leakage.

Dev & business

React 19, TypeScript, Python/FastAPI, PostgreSQL, Docker. Hexagonal architecture.

FAQ - Healthcare

OPDP, EPR, medical secrecy.

Which sovereign cloud for a medical practice (EPR-compatible)?

Infomaniak Public Cloud (Geneva / Zurich, ISO 27001, Swiss datacenter), Exoscale (Swiss, Swiss governance), or self-hosted OpenStack. All three are EPR-profile compatible and OPDP-compliant. Choice depends on volume and budget.

How to comply with OPDP in a medical practice?

Five points: (1) record of processing activities, (2) DPIA for high-risk processing (genomic, psychiatric), (3) documented informed consent, (4) Swiss hosting or adequate country, (5) data destruction after 10 years. We can support on a vCISO-health model.

How much does EPR connection cost for a practice?

Between CHF 5,000 and 20,000 for initial setup depending on your current software. Plus CHF 100-500/month for maintenance (CertEPD certificates, IHE-XDS supervision). Some cantons (VD, GE) partially subsidize.

Can ChatGPT be used to draft medical reports?

Never on public ChatGPT. Any patient data (even incompletely anonymized) sent to OpenAI leaves Switzerland and may violate OPDP and art. 321 SCC. The right way: an on-premise LLM (Ollama, Mistral) hosted in your practice, with no outbound internet.

What encryption level for patient records?

AES-256 at rest (disk + database encryption), TLS 1.3 in transit, keys managed by HSM or Swiss KMS. For care homes, add application-level encryption (per-record) with annual key rotation. We deploy turnkey.

Le Dahu services for this sector

All our services adapt to your business and constraints.

Cybersecurity

Audit, pentest, vCISO, managed SOC, FADP, FINMA, ISO 27001.

Sovereign cloud

Migration, infrastructure, Swiss hosting, OPDP, EPR.

Custom dev & AI

Business apps, AI integration, RAG, automation.

Pro website

Showcase, e-commerce, redesign, SEO performance.

Indicative ranges

Pricing ranges - medical practices

Medical practice audit

OPDP compliance + action plan

CHF 3,000 - 8,000

Swiss medical hosting (monthly)

Depending on volume and users

CHF 120 - 350

EPR/CIP integration

Setup + training + 6 months support

CHF 5,000 - 20,000

Indicative ranges for 2026. Personalized quote in 48h after a call. VAT excluded.

Free practice audit - OPDP compliance.

30 minutes to identify the 3 priorities: backups, EPR, AI. Confidential discussion.

Book the audit