Inhealthcare Digital Health Platform
Vodafone works with Medtech companies to realise the benefits digital solutions can have on addressing challenges in healthcare. Vodafone is an authorised re-seller of the Inhealthcare Digital Health Platform and is a distributor of this service. The Platform automates monitoring and enables virtual wards using a range of communication tools.
Features
- Hosted in the NHS secure network (HSCN)
- Patient services accessible by over 99% of the population
- Integrated with GP and hospital clinical systems
- One-click patient referral from GP systems
- Direct upload of patient results into patient's health record
- Integrated with NHS national patients systems
- Flexible, digital pathway engine
- Services designed by the NHS
- Device agnostic
- Customisable digital pathways
Benefits
- Ensures patients data is safe and accessible by clinicians
- Inclusive and bridges the digital divide
- Enables an integrated, paperless NHS
- Less time on paperwork, more time with patients
- Gives clinicians full visibility of a patient's health
- Support NHS England Strategic initiatives
- Allows clinicians to create new services from scratch
- Triaged list of patients and the ones requiring support
- Step and step down of patients based upon their needs
- Better outcomes for patients and savings for NHS providers
Pricing
£1 a user a month
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
3 3 2 9 5 2 0 4 3 9 7 1 7 7 8
Contact
Vodafone Limited
Frameworks Team
Telephone: 03333 040191
Email: frameworks_team@vodafone.com
Service scope
- Software add-on or extension
- No
- Cloud deployment model
- Public cloud
- Service constraints
-
The Inhealthcare Digital Health Platform solution is entirely based on a Software as a Service (SaaS) cloud model so customers receive all future updates immediately and the software will be updated automatically.
Inhealthcare performs updates to its SaaS cloud platform on a monthly basis and will perform all changes within this change window. Customers are notified of the change window ahead of the change window and all changes are performed out of hours so that there is minimal impact to clinicians and patients. - System requirements
-
- NHS Network (HSCN) recommended
- TLS 1.2 as a minimum for connection
- Inhealthcare Desktop application requires .NET 4.7 Framework or higher
- Browser requires Web RTC for video conferencing
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- The Vodafone Service Desk’s core support hours are Mon-Fri, 9am to 5pm, excluding bank holidays.
- User can manage status and priority of support tickets
- No
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- No
- Onsite support
- Yes, at extra cost
- Support levels
- As part of the service, customers receive access to the Vodafone Service Desk. Customers will also have access to an account manager who will be their main point of contact.
- Support available to third parties
- Yes
Onboarding and offboarding
- Getting started
- As part of the service we can supply on-site training for the desired customer staff and the associated roles. As part of the solution Vodafone will provide all user guides/documentation for the initial roll out. As part of the implementation planning we will work with the respective personnel assigned by the customer to ensure that the training approach meets the requirements of the customer and that it covers all of the areas of the solution. Expert trainers are available and will tailor the training approach to provide a combination of train the trainer and group training sessions to ensure that the customer's users are proficient in the solution.
- Service documentation
- Yes
- Documentation formats
-
- HTML
- End-of-contract data extraction
- Vodafone will work with the customer to produce an Exit Plan detailing the process to exit from the services supplied in a timely and orderly manner. There are several different options available to customers for extracting data at the end of the contract
- End-of-contract process
- Services can be decommissioned as part of the agreement, and there may be additional costs involved in decommissioning or transferring to other systems subject to the pre-agreed exit provisions.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Application to install
- Yes
- Compatible operating systems
-
- Android
- IOS
- Windows
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- The Inhealthcare Desktop Application for professionals has additional functionality to enable the customer to perform integrations with clinical systems. This is not available on the Inhealthcare Professional mobile app.
- Service interface
- Yes
- User support accessibility
- WCAG 2.1 AA or EN 301 549
- Description of service interface
- The service interface allows local administration teams to manage their user base and organisation setup. The interface allows for the configuration of services within their specific organisation.
- Accessibility standards
- WCAG 2.1 AA or EN 301 549
- Accessibility testing
- No testing of the software has been completed with users of assistive technology.
- API
- Yes
- What users can and can't do using the API
- The Inhealthcare Digital Health Platform provides RESTful and SOAP based web service interfaces over HTTPS to enable application to application communications. The web services support a number of different authentication and authorisation options including BasicAuth, OAuth2 and mutual SSL certificate based authentication.
- API documentation
- Yes
- API documentation formats
-
- HTML
- API sandbox or test environment
- Yes
- Customisation available
- Yes
- Description of customisation
-
As part of the service setup and configuration it is possible to tailor specific elements of the Inhealthcare Digital Health Platform to be specific for each customer. For example, it is possible to tailor the flow of information between clinicians and patients and make it unique for your organisation or service.
It is possible for either the customer to complete this customisation or alternatively Inhealthcare can complete it on behalf of the customer during the setup process.
Scaling
- Independence of resources
- The service has monitoring and alarms in place on its SaaS platform to ensure that it has sufficient capacity and resources to ensure that users are not experiencing any degradation in service because of other users.
Analytics
- Service usage metrics
- Yes
- Metrics types
- The reported outcomes are all stored into the data warehouse in real time, enabling both real time and historical data analyses. This facilities business intelligence to be performed across multiple dimensions of the data, and enables the measurement of KPIs, analysis of champion/challenger scenarios (such as those with and without medication), see trends over time, plus many other business intelligence tasks that support decision services across the wider health infrastructure.
- Reporting types
-
- API access
- Real-time dashboards
- Regular reports
- Reports on request
Resellers
- Supplier type
- Reseller (no extras)
- Organisation whose services are being resold
- Inhealthcare Limited
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Security Clearance (SC)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- United Kingdom
- User control over data storage and processing locations
- No
- Datacentre security standards
- Managed by a third party
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
- Encryption of all physical media
- Data sanitisation process
- Yes
- Data sanitisation type
- Deleted data can’t be directly accessed
- Equipment disposal approach
- A third-party destruction service
Data importing and exporting
- Data export approach
-
Extraction of data is available to authenticated users and/or systems that have the correct RBAC access and data permissions.
The solution provides a number of interfaces to enable data extraction, including SQL. Web services are also available for data extraction purposes.
Any user or system with the correct RBAC access and data permissions from the trust will be able to perform data extraction without any reliance upon the Platform and at no additional cost. - Data export formats
-
- CSV
- Other
- Other data export formats
-
- XML
- JSON
- Data import formats
-
- CSV
- Other
- Other data import formats
-
- XML
- JSON
Data-in-transit protection
- Data protection between buyer and supplier networks
- TLS (version 1.2 or above)
- Data protection within supplier network
-
- TLS (version 1.2 or above)
- IPsec or TLS VPN gateway
Availability and resilience
- Guaranteed availability
-
The service SLA is 99.9% availability of the Core System.
Core System Availability is measured across a calendar month.
Core System Unavailability is identified by proactive fault detection by the the service management centre or when Vodafone acknowledges the Customer’s reported fault.
Any applicable service credits will be set out in the Call-Off Contract with the Customer. - Approach to resilience
- Regarding resiliency, the platform is hosted within the Amazon Web Services (AWS) London Region. The design is spread across at least two availability zones, with enough network space provisioned within each zone to afford room for a full capacity stack should an incident in one available zone deny the use of the network space provisioned within it. Each availability zone is cross-connected with high capacity network links which provide low latency to components which may crosstalk between zones. Other networking components offered by AWS are leveraged with a view to resiliency, including NAT gateway, which isa highly scalable internet gateway used to access internet resources including patch servers and command and control (ECS) servers. Each component within the application stack is usually deployed with a minimum of two instances (for platform engine instances, this is currently 4 instances for user request traffic, and a further 3 instances for async message and event processing). AWS Elastic Load balancing is used to serve user traffic to these instances in a round-robin fashion. Faulty or unresponsive instances are detected automatically by AWS Elastic Load balancing, and are removed from service rapidly.
- Outage reporting
- As part of its ISO 27001 and ISO9001 accreditation Inhealthcare has documented business continuity and major incident policies. In the unlikely event that a major incident is invoked an incident manager will be responsible for managing all external communication with customers. The service provides access to a Status Page for the Platform which provides updates and notifications in the event of a major incident affecting the Platform. Users who are registered will automatically receive notifications from the Status Page in the event that this occurs and notifications are received by email but can also be driven by an API.
Identity and authentication
- User authentication needed
- Yes
- User authentication
-
- 2-factor authentication
- Identity federation with existing provider (for example Google Apps)
- Limited access network (for example PSN)
- Username or password
- Access restrictions in management interfaces and support channels
-
We ensure that as part of support and development roles that users only have access to the systems that they require. In addition, certain access permissions are only opened for a limited time whilst activities such as upgrades or support investigations take place.
This ensures that users do not have access to potentially sensitive information or make changes without access being opened up by a senior operative. - Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Username or password
Audit information for users
- Access to user activity audit information
- Users have access to real-time audit information
- How long user audit data is stored for
- User-defined
- Access to supplier activity audit information
- Users have access to real-time audit information
- How long supplier audit data is stored for
- User-defined
- How long system logs are stored for
- User-defined
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- KPMG are Vodafone's ISO27001:2013 accreditor
- ISO/IEC 27001 accreditation date
- 19/10/2023
- What the ISO/IEC 27001 doesn’t cover
- Please contact Vodafone for a copy of the certificate
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- Yes
- Who accredited the PCI DSS certification
- NCC Group
- PCI DSS accreditation date
- Various
- What the PCI DSS doesn’t cover
- All processes outside of those certified. Certification was for compliance with the Payment Card Industry Data Security Standard (PCI DSS) Version 3.2.
- Cyber essentials
- Yes
- Cyber essentials plus
- Yes
- Other security certifications
- Yes
- Any other security certifications
- ISO22301:2015 for all Vodafone UK business units and functions
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
-
Inhealthcare are accredited by NHS Digital to connect to the HSCN network and their IGSoC score was 100%. They are also ISO27001 & ISO9001 accredited and have maintained an IG Toolkit Level 3 score of 100% since 2011.
As part of their ISO 27001 and ISO 9001 accreditation we have wide range of supporting information security policies and processes. These are meticulously followed within the organisation and your security and compliance manager ensures that all staff go through induction and regular training to ensure compliance.
Any security incidents are logged by the security and compliance manager and are reviewed at quarterly forum meetings where representatives from all over the business, including the CEO are present.
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
-
Updates to the SaaS cloud platform are performed on a monthly basis and all changes are made within this change window. Customers are notified of the change window ahead of the change window and all changes are performed out of hours so that there is no impact to clinicians and minimal impact to patients.
Through the Inhealthcare change management process the customer will be made aware of upcoming upgrades and the content of the upgrade. In addition, the change window for the upgrade will be communicated to the customer. - Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
-
Patches are regularly performed to services based on the recommendations of software manufacturers.
Inhealthcare sign up to mailing lists from software manufacturers so that they can be made aware of potential threats and then perform an internal risk analysis to determine how quickly a patch needs to be deployed. - Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
-
Within its services Inhealthcare deploys different layers of monitoring to reduce the risk of compromises, including Firewalls with IDS / IPS and Anti-virus software.
In the event a comprise was found Inhealthcare would invoke its major incident process to determine the extend of the compromise and from this the resulting actions which need to be undertaken. - Incident management type
- Supplier-defined controls
- Incident management approach
- As part of its ISO 27001 and 9001 accreditation Inhealthcare has a major incident process which ensures that all reported incidents are logged by Vodafone and the service users. In addition the policy ensures that incident reports are provided to users in the event of a major incident which details the root cause and the steps which have been undertaken to prevent it occurring again.
Secure development
- Approach to secure software development best practice
- Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)
Public sector networks
- Connection to public sector networks
- Yes
- Connected networks
-
- NHS Network (N3)
- Scottish Wide Area Network (SWAN)
- Health and Social Care Network (HSCN)
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Covid-19 recovery
- Tackling economic inequality
- Equal opportunity
- Wellbeing
Fighting climate change
Fighting climate change
We believe that urgent and sustained action is required to address the climate emergency. Business success should not come at a cost to the environment, and we are committed to ensure the greening of all our activities. We also see a key role for our digital networks and technologies in helping to address climate change. Digitalisation is key to saving energy, using natural resources more efficiently and creating a circular economy.
Our carbon reduction targets support those introduced in 2019 when the UK Government amended the Climate Change Act 2008 by introducing a target of at least a 100% reduction of greenhouse gas emissions in the UK by 2050. Vodafone’s own target, validated by the Science Based Target initiative, is to achieve net zero by 2040. We produce an annual Carbon Reduction Plan in line with PPN 06/21 which outlines the environmental management measures that will be applied in the performance of our contracts.
The Carbon Reduction Plan is published on our website here: Protecting the Planet | Vodafone UKCovid-19 recovery
Covid-19 recovery
At Vodafone, we believe that everyone, everywhere should have access to technology. That is why our initiative – everyone.connected – was launched during the pandemic to close the digital divide.
The COVID-19 pandemic has caused a global economic crisis, creating a greater need for focus on inclusion and equality. As a technology brand, we are determined to support those who need it most – students, jobseekers, small businesses, remote communities and the elderly. This is because we know that being connected creates endless opportunities; from remote working, to education and staying in touch.
We will keep doing all we can to make sure nobody is left behind – because when people are connected, equal opportunities are created and the future is brighter.
The programme has continued post-COVID and we are now committed to helping 4 million UK people and businesses cross the digital divide by the end of 2025. Details on our programme and our on-going commitments
can be found here: everyone connected | Tackle the digital divide | Vodafone UKTackling economic inequality
Tackling economic inequality
Vodafone is committed to tackling economic inequality by helping to create new businesses, jobs, and skills. Since forming in Newbury, Berkshire in 1982, we have purchased products and services globally to innovate and achieve business growth.
Today, Vodafone works with over 9,000 suppliers. We’re strong advocates of the ‘one company, local roots’ concept. By creating opportunities for new businesses and supporting supply chain resilience, we enable our suppliers to recruit and grow. In turn, our partners maintain their own diverse supply chains of smaller, local partners, technology start-ups and market specialists.
We encourage small and medium sized enterprises in our own supply chain, e.g. by offering them positive scoring in our RFQ process (which has a 20% weighting for sustainability responses) if they commit to introducing policies that align with Vodafone’s purpose. In this way, we aim to drive positive change in the supply chain.
Vodafone is committed to tackling economic inequality for disadvantaged groups and areas. We support the UK Government’s ‘Good Work Plan’, the levelling up agenda and the Government’s priorities such as reduced reoffending and increased opportunities for disabled people. We work with leading public service provider, PeoplePlus, to help create opportunities for individuals from lower income households who may face barriers to employment. They are a national UK wide company and extension of the UK Job Centre who aim to deliver skills and training to ensure people can access the right employment and enhance their career prospects.
Vodafone’s work experience strategy addresses the underrepresentation of certain groups across the Technology workforce. We have offered work experience to over 4000 students since 2017 through programmes such as #CodeLikeAGirl and Innovators virtual work experience programme. Both programmes target a proportion of ethnic minority, female, and low social mobility students.Equal opportunity
Equal opportunity
We are committed to equal opportunities in our workforce. Through our recruitment processes we:
o use gender neutral advertising for vacancies posted, running the advertisements through a gender decoder
o actively ensure diverse shortlists are provided to hiring managers as well as having diverse interview panels to ensure the candidate feels as comfortable as possible throughout the process
o Limit the “criteria/ essential” skills and reduce technical jargon where possible
o Anonymise CVs removing names, pro-nouns and photos
o Remove university education from CVs
o Run training for hiring managers on topics such as inclusive hiring, race and ethnicity, accessibility, discrimination, allyship and gender diversity.
o Run campaigns related to diversity and inclusion with an intersectional approach aimed at increasing brand awareness and perception of Vodafone as a diverse and inclusive employer, as well as job applications.
o Partner with external organisations to help create opportunities to attract greater diversity into our workforce. These include myGWork, a network for LGBTQ+ talent, Black Young Professionals network, and Evenbreak who have a community of 70,000 talent with disabilities.
o We have publicly available Fair Pay Principles that govern our approach to reward.
Vodafone has come together with Ofcom and other organisations to sign Women in Tech, a pledge committing to promote the role of women in technology-based roles in the telecoms sector. We are committed to work together to increase senior representation of women, share best practice and help to drive change in Vodafone and across the industry. Our company goal is 45% women in management roles by 2030.
We have a range of employee networks who advocate for different groups including groups for LGBTQ+, BAME and disabled employees. We are signatories of the Race at Work Charter, Disability Confident Scheme and Hidden Disabilities Sunflower Scheme.Wellbeing
Wellbeing
Vodafone’s Group Health, Safety and Wellbeing Policy expands on the Code of Conduct, setting out our commitment to establish a robust and durable health, safety and wellbeing culture. This policy is accompanied by detailed standards setting out the specific steps that must be taken to manage our greatest risks.
https://www.vodafone.com/about-vodafone/who-we-are/people-and-culture/workplace-safety/our-approach-to-safety
We have a multi-faceted employee wellbeing programme which covers:
• Physical health, including discounted gym membership, free access to a remote GP and discounted/free health assessments.
• Emotional and mental health. Silvercloud is a digital self-help support platform, endorsed by the National Institution of Health Care Excellence (NICE) as being an effective tool to maintain and improve wellbeing. Employees can access a variety of programmes including: Sleep, stress, resilience, Covid-19, positive body image, mindfulness, money worries.
• Financial wellbeing. We offer a personalised financial education tool.
Our commitments to wellbeing are supported by industry leading HR policies, e.g. our enhanced Maternity/Paternity Policies and a flexible working culture. We run an award-winning ReConnect return to work programme for those who have taken career breaks due to caring responsibilities. Our commitments are recognised externally, and we continue to be ranked as one of the UK’s top 10 ‘Best Workplaces’.
Pricing
- Price
- £1 a user a month
- Discount for educational organisations
- No
- Free trial available
- No