Case Study: UZ Leuven achieves secure, scalable EMR sharing while preserving patient privacy with Wallarm

UZ Leuven’s new platform needs security protection and processes that have allowed everyone in their DevOps and Security teams to participate in security

UZ Leuven (University Hospitals Leuven), Belgium’s largest hospital network with four campuses, ~2,000 beds and 9,500 staff, faced the challenge of scaling a successful on‑prem EMR system into a cloud platform while protecting highly sensitive patient data shared with 30+ hospitals. To secure its client‑facing apps and APIs during that cloud migration, UZ Leuven partnered with Wallarm, deploying Wallarm’s API/application protection (covering all HTTP external data APIs and mobile applications) and using Wallarm’s Ingress controller to support on‑prem, hybrid and cloud deployments.

Wallarm was implemented inside UZ Leuven’s infrastructure to provide API‑centric security, ML‑driven detection informed by white‑hat insights, CI/CD integration, and fast triage to reduce false positives. The solution preserved compliance and privacy by keeping request processing local, delivered visibility into attacks for developers and security teams, and provided autoscaling support so the platform could expand securely — protecting patient data across millions of EMRs and the network of 30+ hospitals as UZ Leuven moved to the cloud.

UZ Leuven