Skip to content

Data security

Diligence. Care. Expectations. Best practice. Governance. Certified.

All of these standards apply to everyone working within the private healthcare sector. And these are the same principles we apply to our data security. We’re held to the the highest levels of accountability and are constantly and consistently measured against this.

Learn more

Our approach

Patient safety

The protection of patient data is critical for practitioners, clinics, hospitals and insurers who are all under increasing pressure to ensure the right controls are in place. No need to worry - our solutions offer high levels of security.

24/7 data back up and disaster recovery

We have you protected 24/7. Our system infrastructure is designed to minimise any impact from system failures. We take a daily back-up copy of your data which is securely stored on our UK-based computing platform.

Testing

We regularly audit our security measures to identify potential weaknesses. Our rigorous testing processes ensure that our platforms are secure, resilient and up to date.

Data

Our data is stored on our UK-based computing platform. For peace of mind our systems have full end-to-end encryption. Access is controlled with an industry-standard authentication-authorisation solution.

Communication

You can access our Secure Messaging service. Send encrypted messages to key contacts within hospitals, clinics, practitioners and insurers.

Standards

Information security is at the heart of all of our technology and our customers can be confident that we have the necessary controls in place to protect their sensitive data.

We’re continually expanding the features and capabilities of our secure systems to enhance operational efficiency, information, governance and quality assurance within the sector.

ISO 27001:2013

Our platform, uniquely tailored to the provision of online solutions and services to the healthcare market, complies with all of the vigorous requirements of ISO/IEC 27001:2013. We first achieved this certification back in 2009 and have worked diligently to maintain it, alongside our commitment to the highest security standards, ever since.

Cyber Essentials Certified

We’ve also been awarded the government-backed Cyber Essentials (CE) Certification, proving our unyielding commitment to safeguarding our systems and your data from cyber attack. We’re dedicated to consistently reinforcing best practices across all aspects of cyber security.

Compliance

2

Data security oversights can be extremely costly. In addition to the potential disruption and embarrassment, the ICO could also impose a financial penalty if it finds that we hadn't done enough to protect users’ sensitive personal data.

  • Our systems are secured in line with ISO27001 standards. What's more, access to the data is protected by an industry-standard authentication-authorisation solution.
  • Information is both stored and shared in line with best practice recommendations of the Information Commissioner’s Office (ICO).
  • We've a stringent Information Security Management System tailored for online solutions offered to the private healthcare sector. This ensures the data we hold complies with data protection law and all our team understand their responsibilities.

Transparency

1 - By design

We've embedded all the principles and regulations of security into all our system and product development projects. From ePractice and The PPR to online appointment booking. Access to all our solutions is secured using an industry-standard authentication-authorisation solution.

2 - Products and services

Our transparent products and services enable you to effortlessly manage your businesses. Fulfil your legal obligations. Improve care co-ordination. Prioritise patient care over paperwork. Work seamlessly and share information securely across multiple departments, practitioners and organisations.

3 - Tracking

We help you keep track of how data is processed and stored as well as assist with how you manage internal process too. Access to your system is logged for security and audit purposes, so you can ensure that staff have a valid reason to view personal and patient data as part of their work.