Sykehuspartner AS supports most regional health authorities in Norway. Around 90,000 users rely on its data platform, and the decisions made through that platform affect healthcare delivery for 3 million people.
As the Power BI environment expanded across both cloud and on-premises infrastructure, the real challenge became governance. Sensitive healthcare data, strict regulatory obligations, and a decentralised organisation created a need for clear policies, structured access control, and a secure operating model.
The scope included:
The objective was to turn a growing Power BI environment into a governed and operational platform that could scale safely across a highly regulated healthcare landscape.
BCT worked across both Power BI Cloud and Power BI On-Premises to design the frameworks needed to support secure data access, reliable operations, and clear accountability across the organisation.
Rather than treating governance as documentation around the platform, we built it into the platform itself — through policies, access structures, technical architecture, and operational processes designed for real-world use.
We established end-to-end governance models covering data ownership, sharing protocols, lifecycle management, and user responsibilities. The framework was designed for a decentralised organisation operating under strict regulatory obligations with multiple gates to avoid sensitive leaks or decisions affecting critical reporting.
We built hybrid-governance models for decentralized decision making to ensure speed and agility while supporting a strong and efficient management of 5.000+ reports and 250+ workspaces
We defined and implemented role structures, permission models, and security guidelines aligned with GDPR, Norwegian healthcare regulations, and the handling of highly sensitive health and identity data.
The security model utilized nested group security through an advanced Azure Entra ID setup with multiple layers and protocols to ensure efficient handling and management of approval flows. The system was integrated into a larger ITSM structure with a built-in reporting layer for day-to-day follow-up and administration.
Overall the approach ensured that the setup was manageable by a small and dedicated team with efficient tools, cutting months of work into a 2-day automated job.
We designed the secure gateway integration connecting on-premises data sources with the cloud analytics environment, enabling reliable data movement without exposing sensitive information in transit. The model was built on top of a detailed network infrastructure with gated VLANs to ensure DMZ compliance for a secure gateway.
The gateway was centrally managed by the BI management team and had clear security and governance processes for ensuring a strict one-way data protocol.
We supported the operational setup of the platform throughout the engagement, helping ensure high availability, regulatory compliance, and service continuity across a critical national user base. We supported Sykehuspartner more than 2+ years with setup, integration, implementation and day-to-day operations of the setup after Go-live.
By establishing the right governance model, security architecture, and hybrid operating structure, Sykehuspartner gained a stronger foundation for healthcare data access across Norway.
This made it possible to:
More broadly, the work ensured that healthcare administrators and professionals could make faster, better-informed decisions because the infrastructure behind them was secure, stable, and operationally sound.
We led Hafslund kraft’s finance transformation from manual complexity to cloud-ready operations
A hybrid AI architecture enabled secure search, internal chat, and direct API access
Automated data collection enabled faster and more reliable trading insights
