Skip to content

A high level overview of how OpenSAFELY worksđź”—

A diagram of how OpenSAFELY works.

Once a research project is approved, the Approved Researcher is given permission to access the system to manage code execution, which allows them to run code against patient data in the Secure Zone as appropriate for their project. There is extensive documentation for OpenSAFELY, including step-by-step getting started guidance - this diagram provides a high-level overview of how the system works.

  1. The researcher has access to various tools (see below) that allows them to design and write code that will enable them to run their analysis on patient data via the OpenSAFELY system. Using these tools, they write and test their ehrQL and analytical code (R, Python or Stata) in Github before it is run in the Secure Zone. Github is used to store code and help with collaboration and versioning. The code can be tested and perfected/improved on a dummy dataset.
  2. Once the code is written, the researcher can log into the system to manage code execution and run a specific section of code or their entire code against a patient dataset. They do this via the jobs site.
    1. This request is sent to the Secure Zone which operates within the data controllers’ domain (e.g.TPP or Optum). Within the Secure Zone, the code is run against the sensitive patient data generating an output.
  3. Once the code has run, researchers can review the output (safe files1) within Airlock, a tool hosted in the Secure Zone. When the researcher is satisfied with the output, they submit a request for the results to be released, allowing the results to leave the data controller’s domain.
  4. The output checkers review the output to ensure it contains no sensitive or disclosive information and is consistent with project approval (safe outputs1). Once approved, the released results become accessible to the researcher via the jobs site.

Permanent logs of activities - These are records of all the code (extraction and analytical code) run against patient data for a project, as well as all the outputs that have been released from the Secure Zone. The public can view when and who submitted each request to run code against the patient data and when and who released the outputs. This supports transparency and auditability across the research lifecycle.

Tools to help with writing codeđź”—

a. Github codespaces A ready-to-use cloud development environment you can access from anywhere without installing anything on your computer.

b. Github repo template A starter repository you can copy to create new projects quickly.

c. Project.yaml A configuration file within your project's repository that defines your project’s settings and structure.

d. Table schemas + metadata Table schemas define the tables and columns available to query in a dataset definition. Metadata provides contextual information on the core primary care EHR systems inside which OpenSAFELY is built (currently TPP and EMIS), as well as all external datasets imported to the secure EHR environment.

e. OpenCodelists A system for building, reviewing and maintaining codelists

f. ehrQL Electronic Health Records Query Language: a query language and software tool designed for working with health data

g. Dummy data Sample data used for developing analytic code on your own computer

h. OpenSAFELY CLI The main tool for using a version of the OpenSAFELY platform on your computer to test your code

i. Docker Images Prebuilt packages for running software containing R, Python and Stata - these contain the specific software versions that are installed within the Secure Zone

j. CI checks Automated tests that will check that the analytical code will run successfully in the Secure Zone.

  1. Safe in this context means the 5 Safes framework, which OpenSAFELY is designed around.