Self-Hosting as a Basic Principle

• On-premise operation of all N8N components
  • Complete control over data flows
  • No transmission of sensitive data to external services
• Avoid cloud alternatives for sensitive patient data
  • Currently no formal HIPAA compliance for the N8N Cloud

Technical Protective Measures

• Encryption at all levels:

  • TLS for all network connections
  • Encrypted databases for workflow data
  • Encrypted credentials for system access

• Network Security:

  • Operation in a secured network zone
  • Reverse proxy with HTTPS termination
  • Firewall rules for minimal access

Data Minimization

• Principles:

  • Process only necessary data
  • Early filtering of sensitive information
  • Automatic deletion of execution data

• Configuration Recommendations:

  • Activate Execution Data Pruning
  • Implement workflow-specific data filters