REDCap seems similar to what you are searching for. It is secure (including compliance with 21 CFR Part 11, FISMA, HIPAA, and GDPR). It is widely disseminated, and you can check if your institution has access to it. It is "free" as long as your institution agrees to the terms and conditions of the REDCap org. Source: over 1 year ago

I'm working on a research project that involves abstracting and importing patient data from EPIC into REDCap for later analysis. Currently, we are doing this manually (i.e. Copying and pasting things like name, date of birth, etc), and as you can imagine, it is quite tedious (and doing a single patient takes an hour and a half). Source: about 2 years ago

Not sure if your facility would qualify, but this is pretty amazing. Uses a MySQL backend. https://projectredcap.org/. Source: almost 3 years ago

I had my website deployed as a virtual host using web station. Then I moved it into a virtual DSM where I setup web station and backends etc. Exactly the same (restored a hyper backup of web station and website files/databases into the VM then uninstalled same from the main NAS). Then to get to it over the web, my NAS has a reverse proxy that routes the traffic to the VM. The way it's setup the only port that will... Source: almost 2 years ago