DNV IMATIS UK LIMITED

(eBCMS) Bed and capacity management system

DNV Imatis eBCMS is a solution for health organisations that harnesses real-time data to provide precise, up to the minute insights into hospital KPIs, waiting times and bed occupancy. It tracks the patient flow and bed capacity, from the emergency room, inpatient admittance, transfers and discharge through to follow-up.

Features

• Real-time bed status
• Aggregate and display data from multiple sources
• Real-time dashboards
• Seamless transfer between wards
• Precise digital communication with patient context
• Shared checklists adapted to your workflow
• Role-based access
• Access from smartphones
• Patient care need registration

Benefits

• Transparency and shared understanding of situation within and across wards
• Enhances existing IT systems and infrastructure, making the data actionable
• Easily identify bottlenecks, adjust staffing and gain predictability
• Reduce patient waiting times and free up beds
• Reduce number of phone calls, improved patient safety
• Reduce bottlenecks in patient flow enabling earlier discharge
• Relevant information to the relevant health worker safeguarding patient privacy
• Enables bedside communication, decision making and information capture
• Improved capacity planning and situational awareness

£238,900.00 a licence a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at christopher.betts@dnvimatis.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

177342165289767

Contact

Christopher Betts
+447930999486
christopher.betts@dnvimatis.com

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
  • Hybrid cloud
• Service constraints: Our preferred cloud service provider is Microsoft Azure, and is the basis of our service offering and respective pricing. ; ; Each new cloud software service is delivered and configured as a project by our professional services team. We provide access to our software in a hosted pre-production/test environment and a live production environment. Any bug fixes, patches or software updates are applied to the pre-production environment for customer approval and then scheduled with customer for applying to the live environment.
• System requirements:
  • No specific system requirements for the buyer
  • No requirement for specific software licences

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Response times are determined by the SLA agreed with the customer. ; ; Our standard support service is second line and is available during working hours Mon to Fri (8:00- 16:00). The standard SLA for this service for responses to questions related to errors is as follows:; * A - Critical error < 1 hour ; * B - Serious error < 2 hours; * C - Less serious error - no later than next working day.; ; Note: Critical error support can be uplifted to 24/7 cover at additional cost.
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: DNV Imatis technical support is available for our cloud hosted software. The service is classed as Second line, with First line support being provided by the customers ICT service. We also have a direct support SLA with Microsoft Azure, our cloud hosting partner.; We operate two support levels ; (1) Standard Support (Mon - Fri, Working hours 8:00 - 16:00 excluding public holidays), cost included within the Software as a Service subscription pricing,; (2) Premium Support uplift for critical bugs & errors (24 hour / 7 day including public holidays). Indicative cost is 30% uplift to the SaaS subscription pricing detailed in the pricing documents.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Our cloud software services are implemented as a defined project with a range of professional services roles working in close collaboration with the customer. Our project based approach is to ensure the service meets the exact needs of each customer and delivers to the users the full benefits of the solution. ; ; These project services include various training options, tailored to the customers' specific needs and range from onsite 'train the trainer' aimed at service super-users, to online accessible videos and documentation.; ; In addition to training, we strive to support our customers' onboarding experience with onsite assistance and close follow up whenever necessary.
• Service documentation: Yes
• Documentation formats: PDF
• End-of-contract data extraction: At contract end, the customer's assigned Account Manager will arrange a 'Service Exit Runsheet' checklist that will includes deletion and export of users data, this extraction is agreed upon with customer.
• End-of-contract process: At contract end, the 'Service Exit Runsheet' checklist is agreed upon with customer. The offboarding can be conducted using DNV Imatis project resources to perform data extraction activities etc, however unless otherwise agreed with the customer this is not included in the price of the contract.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • Android
  • IOS
  • Linux or Unix
  • MacOS
  • Windows
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: The mobile service has more functionality related to the management of user/role specific activities. ; ; The desktop service has extended functionality related to configuration that is not available within the mobile service.
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: The main service interface is the DNV Imatis Digital Whiteboards and Dashboards that gather information from multiple sources, aligns the data and shows it in a single view. The views can show information from a single ward, multiple wards, or an entire clinic. The solution is developed for use with touch technology but can also be used on desktop computers, mobile devices and monitors.
• Accessibility standards: None or don’t know
• Description of accessibility: Our eBCMS service is designed to be intuitive to use and accessible to all users of the system, comprising of nurses, clinicians and operational management & administrative staff. Currently we do not apply the WCAG accessibility standards to the design of our eBCMS solution however we monitor current accessibility regulations and embrace continuous improvement.
• Accessibility testing: N/A
• API: Yes
• What users can and can't do using the API: Our API's are principally used by DNV Imatis solution architects to enable integrations with other systems and data sources eg: Patient Administration System (PAS). It is possible however for the customer to use the APIs to access data for reporting purposes. The use of the APIs depends on the context of the project deliverables and will be determined and agreed with each customer.
• API documentation: Yes
• API documentation formats:
  • Open API (also known as Swagger)
  • PDF
• API sandbox or test environment: Yes
• Customisation available: Yes
• Description of customisation: The service applications are standardised based on best practice and years of experience of adapting our solutions to meet the needs of many European healthcare organisations. The eBCMS service can be customised for each organisation either by DNV Imatis consultants and clinical application specialists or by the customer's trained inhouse superusers . The main customisation concerns what data needs to be displayed in digital whiteboards and dashboards, this requirement varies by organisation and department and can be adapted to specific workflows.

Scaling

• Independence of resources: The DNV Imatis eBCMS solution is built for use by large scale healthcare organisations and is designed to tolerate high demand. We work closely with our Microsoft Azure cloud service provider to ensure the service scales to provide optimal performance and resilience.

Analytics

• Service usage metrics: No

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users can export data within the eBCMS solution to PDF, xlsx or csv formats. All data can be exported to csv.
• Data export formats:
  • CSV
  • Other
• Other data export formats:
  • PDF
  • XLSX
• Data import formats:
  • CSV
  • Other
• Other data import formats: XLSX

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: Guaranteed levels of availability is 99.5% within service uptime. Further details described within the Service Definition document.
• Approach to resilience: Available on request
• Outage reporting: Email alerts

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
  • Other
• Other user authentication: The eBCMS solution has multiple options for authenticating users when accessing the service through web protocols. All options listed above (2FA, ID federation and username or password) or any combination of them is possible.
• Access restrictions in management interfaces and support channels: All management access is restricted using access controls including username & passwords and 2 factor authentication or network connectivity.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Other
• Description of management access authentication: The system has multiple options for authenticating users when accessing the service through web protocols. All options listed above or a combination of them is possible.

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: Kiwa AS
• ISO/IEC 27001 accreditation date: 21/12/2023
• What the ISO/IEC 27001 doesn’t cover: Employee's home offices are not covered by ISO/IEC 27001 however the few remote working employees are all sales personnel. These employees undertake mandatory training on security policies and procedures. Remote access to all business systems is via a secure VPN and use of 2 factor authentication controls.
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: We operate a comprehensive set of policies, mandatory training of employees and various level of security controls, online monitoring, internal and external audits as well as regular management reviews help us keeping control over information security.; ; All ISO 27001 requirements and controls are implemented in practice. All employees are required to read specific policies and our annual ISO 27001 external audit verifies our compliance with requirements. ; ; Quarterly Management Review meetings are primary reporting body and any necessary issues can be raised to the Board.; ; We also comply with the NHS Digital Technology Assessment Criteria (DTAC) including Data Security and Protection Toolkit and Cyber Essentials.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: All service delivery components are subject to our ISO 27001 configuration and change management processes, ensuring comprehensive oversight. This includes services tracked throughout their lifecycle, with rigorous assessment for potential security implications
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: DNV Imatis staff perform risk and vulnerability assessments on a regular basis. Our software engineering teams deploy hotfixes, regular updates and new versions of the software on a continuous basis to ensure the stability and security of our cloud software services.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Our protective monitoring processes is as defined in ISO 27002:2022 control A.8.16 Monitoring activities and A.5.26 Response to information security incidents. We comply with the guidance provided within the ISO 27002:2022 standard.
• Incident management type: Supplier-defined controls
• Incident management approach: Our incident management processes is as described in ISO 27002:2022 control A.5.24 Information security incident management planning and preparation and A.5.26 Response to information security incidents. We comply with the ISO27002:2022 guidance.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Covid-19 recovery
  • Wellbeing

  Covid-19 recovery

  Our eBCMS software service facilitates and enables workflows that require far less physical contact between staff, patients and their families. The eBCMS solution provides a comprehensive digital overview of hospital operations to determine and track patient flow, optimise staff efficiency through digitised task management & communication and implement tracking and compliance with infection protection & control measures.; ; tracking , ability to track where and when patient has been (contacts with infected persons/areas).

  Wellbeing

  Our solutions are designed to provide patients with a better healthcare experience and staff with reliable and dependable tools to better perform their duties. The efficiency and productivity gains realised from using our software will result in less waiting time for patients and less administration for staff, both directly contributing to improved wellbeing, Our solutions can be extended to provide further software modules associated with workflow improvements and patient experience including possibilities for creating a much quieter hospital environment through the application of mobile alarm management capabilities.

Pricing

• Price: £238,900.00 a licence a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at christopher.betts@dnvimatis.com. Tell them what format you need. It will help if you say what assistive technology you use.