CAPTURE STROKE LIMITED

Capture Stroke

Capture Stroke enables you to build and take ownership of a
live stroke registry, providing reliable and timely analytics
and care alerts. Proven to improve patient outcomes by ensuring that strokes are identified sooner, allowing clinicians to deliver better,
more-timely, evidence-based stroke care

Features

• PAS Integration
• SSNAP Domain reports
• Stroke Care overview by diagnosis and other KPIs
• Stroke Mimic Admission Avoidance
• Improve SSNAP upload efficiency, Simple one-click SSNAP upload facility
• Best Practice Tariff Reports
• Real time breach alerts
• Patient coding
• Bespoke reporting / research functionality
• SSNAP audit validation at the point of entry

Benefits

• Ensure full SSNAP Audit compliance
• Equip stroke teams with data-driven decision-making to benefit patients
• Provide visibility of outcomes and results to your team
• Identify variances in patient care to eliminate inconsistencies
• Improve workflows
• Reduce resource and time required to generate Audit Data
• Reduce Bed occupancy and unnecessary admissions DTOC reporting and visibility
• Reduce potential litigation claims
• Increase efficiency and clinical and administration capacity
• Demonstrate realisable financial, economic and administrative savings evidenced independently

£10,000 to £60,000 a unit a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at emma.sheldon@capturestroke.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

311952464912005

Contact

Emma Sheldon MBE
07925612139
emma.sheldon@capturestroke.com

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: No
• System requirements:
  • Windows Server 2012-2022 for hosting
  • SQL server 2012-2022 for hosting
  • Web browser that is IE11 (minimum) or later client side

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: Support hours are during normal business hours 9am-5pm Monday to Friday; Response times depend on the ticket priority categorisation; Urgent - response in 1 hr; High - response in 4 hr; Medium - response in 4 hr; Low - response in 14hr
• User can manage status and priority of support tickets: Yes
• Online ticketing support accessibility: WCAG 2.1 AA or EN 301 549
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: All customers receive the same level of support - there are no different support levels for Capture Stroke software
• Support available to third parties: No

Onboarding and offboarding

• Getting started: Provision of; User training, with shift friendly training and train the trainer support ; Identification of champtions; Monthly meetings ; Online training; User documentation ; User test site
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
  • Other
• Other documentation formats: Word
• End-of-contract data extraction: Users can extract their patient data by means of csv file; Users can extract data directly from the data ware house via OData feeds.
• End-of-contract process: The system will become unavailable for users, however they can utilise all data collected and downloaded during the contract period. ; Should specific reports or formats be required we would charge on a day rate for reasonable developer time to meet these requests; Full patient export will extract all patient data entered in capture stroke between certain dates

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Mobile is used as Point of care data entry tool, Rapid data entry, Different URL from desktop.; Desktop web application has additional reporting and administrative functionality.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Web Interface
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: Users can access keyboard and mouse for desktop app; ; Users can use keyboard and mouse and voice commands to enter data using the mobile app; ; Mobile app has been tested by existing customer to enter therapy notes using the voice commands
• API: No
• Customisation available: Yes
• Description of customisation: The dataset over and above SSNAP core, 6month follow-up and community datasets can be customised with bespoke questions to help with exception reporting and drive process change at the trust.

Scaling

• Independence of resources: We schedule monthly meetings with all users. ; We have an advisory board to review upcoming demand.; Our resource is fully planned in advance and aligned with National and Local requirements. We have a system wide approach to prioritisation and we advance plan updates, providing our users with user acceptance test sites to support a collaborative and planned approach.

Analytics

• Service usage metrics: Yes
• Metrics types: Outstanding and resolved issues; Service response times
• Reporting types:
  • Regular reports
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Baseline Personnel Security Standard (BPSS)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Managed by a third party
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest: Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Users can export their data using OData and CSV file formats
• Data export formats:
  • CSV
  • Other
• Other data export formats: OData feeds
• Data import formats: Other
• Other data import formats: HL7

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
• Data protection within supplier network:
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

• Guaranteed availability: For Redcentric hosted customers Service Level availablity (measure in hours of service per month) is not less than 99.99%; ; For trust hosted customers, the service level availability is the responsibility of local IT teams.
• Approach to resilience: Redcentric includes creating a backup schedule and monitoring the back-ups.; Data stored on Redcentric IaaS is designed to be resilient with the use of replicated data in case of disaster recovery. ; ; Clients that host Capture Stroke on local trust IT infrastructure are secured by the local IT teams backup and recovery processes.
• Outage reporting: Email alerts triggered on errors and service outages and also weekly from each site regardless of where it is hosted.

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: We have clear processes to define and implement management interfaces and support channels, which allow bespoke access per individual and tracking of access, utilisation of 2FA and system monitoring; ; Using the Business Risk Manager module, we identify all internal and external issues, interested parties and business risks and opportunities relating to the Company’s activities or products and services that are within the scope of its Management System and record key information to inform how to restrict access in management interfaces and support channels; ; Relevant issues require a process, implemented and maintained in the Management System to ensure appropriate management.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: At least 12 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: British Assessment Bureau
• ISO/IEC 27001 accreditation date: 12/03/2021
• What the ISO/IEC 27001 doesn’t cover: This is currently being renewed
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: Yes
• Any other security certifications:
  • DSP Toolkit
  • DCB0129 standard for health IT systems.

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: CaptureStroke have information security policies, these policies cover access to information, devices, engagement with data and equipment control with Chief Technology Officer oversight; ; Change Control Procedure manages addition, replacement and upgrade of hardware, software and critical suppliers. ; ; Business Continuity Plan manages preparation for security incidents. ; ; Information Asset and Risk Management Procedure manages Information Assets and Risk Management of Information Assets. ; ; Security Incident Management Procedure manages Security Incidents. ; ; Supplier Evaluation and Control Procedure manages interactions with suppliers; ; We have numerous, externally validated, via DTAC, security processes and policies in place. We are in reaccreditation process

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: Change Request Form, providing details of the change proposed, justification for the change and authorisation of the change, details of any potential threats, vulnerabilities risks and control measures and a list any applicable actions that need to be completed to manage the implementation of the change. ; ; New Supplier Approval Form, providing details of the assessment of a new supplier/subcontractor that need to be undertaken. ; ; All changes are assessed for potential security impact
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: PEN Test Software Annually
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: Plan: establish the objectives of the system and its processes, and the resources needed to deliver; results in accordance with customers’ requirements and the organization’s policies, and identify; and address risks and opportunities;; — Do: implement what was planned;; — Check: monitor and (where applicable) measure processes and the resulting products and services; against policies, objectives, requirements and planned activities, and report the results;; — Act: take actions to improve performance, as necessary.
• Incident management type: Supplier-defined controls
• Incident management approach: Our incident management approach has pre defined processes and a method for reporting, with incident reports provided. This intended to;; ; Limit impact,obtain and preserve evidence to enable an accurate investigation to be completed and identify root causes ; ; The details of each Security Incident including any evidence gathered and the short-term containment action taken, and a summary of lessons learned must be recorded in the Security Incident Log.

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: Yes
• Connected networks: Health and Social Care Network (HSCN)

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Environmental Policy ; ; Capture Stroke Ltd (Capture Stroke) recognises that its business activities interact with the environment in a variety of ways including:- ; ; Energy Use ; ; Generation of Waste Materials ; ; Capture Stroke recognises that it has a responsibility to help protect the environment whenever it has an opportunity to do so, and provide a comfortable environment for its employees to work in. ; ; Therefore Capture Stroke is committed to:- ; ; Preventing pollution whenever possible. ; ; Complying with all relevant legal, customer and other third party requirements. ; ; Adopting best practices applicable to its activities whenever it is practical to do so. ; ; Capture Stroke will achieve these commitments through :- ; ; Employing processes that identify aspects of the company’s business that have an environmental impact, quantifying the significance of each aspect. ; ; Ensuring that employees, suppliers and customers are aware of any support required to support the company’s commitments and environmental objectives. ; ; Training employees in good environmental protection practices and encouraging employee involvement in environmental improvement periodicals initiatives. ; ; Where possible non confidential waste paper and cardboard packaging etc. should be recycled ; ; Recycle Printer consumables such as toner cartridges and drum kit ; ; Staff are asked to consider whether they actually need to produce paper copies of documents and if they do to keep the number physically produced to a minimum to reduce the amount of paper and ink the company consumes ; ; Staff turn off lights at the end of the working day. ; ; Non-essential equipment turned off at the end of the working day. ; ; Where practical employees use public transport ; ; To facilitate the use of hybrid or electric vehicles there are two charging points provided adjacent to the disabled parking facilities. ; ; Cycle racks are provided ; ; The implementation of this Environmental Policy is fundamental to the success of Capture Stroke’s business and is supported by employees as part of their daily work.

  Equal opportunity

  Capture Stroke Ltd aims to empower people, and we do this with digital technologies. We wish to make these as useful as possible for as many people as possible. Capture Stroke Ltd is passionate about accessibility, diversity and inclusion, and is keen to implement sustainable approaches to these issues. ; ; Our accessibility statement is part of a formal policy that addresses accessibility in the broadest sense. We’re constantly working to make our platform, and this website as accessible and usable as possible

  Wellbeing

  Improve community engagement through our advisory board to enable users to participate in the development of the system toward our goals to support the stroke community and the teams who operate within it, for the benefit of the patients and stakeholders accessing the service.; ; Through our Business Risk Manager module, we identify all internal and external issues, interested parties and business risks and opportunities relating to the Company’s activities or products and services that are within the scope of its Management System and record detailed information to support adoption and engagement

Pricing

• Price: £10,000 to £60,000 a unit a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at emma.sheldon@capturestroke.com. Tell them what format you need. It will help if you say what assistive technology you use.