The requirements: Data security is the priority
Despite the acute situation and the search for a quick and pragmatic solution, no compromises could be made in terms of security. Sensitive health data must be protected in digital environments. Data security is a central aspect with regard to “OZG” implementations. At the same time, it is important to the City of Cologne to make the application user-friendly and unbureaucratic.
In addition to these aspects, there were the following requirements for the application:
• For Cologne residents with less digital affinity, there should be the possibility to print out the certificate.
• From a user perspective, the application needed to be compatible with existing digital pandemic response measures such as the Corona warning app and the CovPass app.
• Also in the backend, the application should be compatible with existing structures such as the digital contact tracking (“DiKoMa”).
• The evidential value and forgery protection should correspond to the standards of the digital vaccination certificate and should also be valid throughout Europe with the so-called DCC conformity.
There are also some technical requirements for a digital recovery certificate. The application must be both data-saving and secure. Furthermore, it should run on the local infrastructure of the City of Cologne. During the development it is important to consider many stakeholders (project management of the City of Cologne, health department, press office, IT administrators, BMG and their consultants, Ubirch and Railslove) while remaining agile. SIDESTREAM was chosen as a suitable partner to implement these high requirements on a high quality level.