Security, data & privacy
We work closely with our users & partners across the NHS to maintain the highest possible standards for data protection and clinical safety. This page sets out who we work with and the principles we adhere to.
Our partners:



Our standards
Approved by NHS Digital & fully compliant with DCB0129, supported by our in-house clinical safety officer
Approved for integration with EMIS & SystmOne following witness testing & clinical safety approval
Yearly penetration testing completed to government CHECK standards
Assurance under the NHS Data Security and Protection Toolkit (DSPT) - ODS code R3U6M
All data is stored in UK data centres, and is encrypted in transit (when it is sent) and at rest (when it is stored)
We adhere to the NHS' Cloud Security Good Practice Guide & good practice for digital and data-driven health technologies