INTEGY LTD

Primary Care Hosted Desktop - GP In The Cloud

The GP In The Cloud service offers a cloud hosted clinical desktop with access to core applications and connectivity required for the provision of remote primary care.

Features

• Cloud Hosted Windows 10 Desktop with network access to HSCN
• Delivered from Microsoft UK based data centres
• Access to clinical data controlled by NHS Smart Card
• Per-User persistent environment with 2vCPU’s, 8GB of RAM
• TPP SystmOne (Requires enabling for VDI by TPP)
• Emis Web
• AccuRX
• DocMan 10
• eConsult
• Office Applications

Benefits

• Allow General Practice Staff and Locums to securely work remotely
• No Infrastructure investment
• Scalable
• More reliable than VPN technologies
• Used in a successful clinical trial in Devon
• Customisable with local requirements
• Allow BYOD scenarios
• Limited support available for Apple Mac Users
• Allow flexible pool GP workers to access multiple practices

£40.00 to £55.00 a user

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ask@integy.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

511407862976106

Contact

Ryan Jewell
01392 796525
ask@integy.co.uk

Service scope

• Software add-on or extension: No
• Cloud deployment model: Public cloud
• Service constraints: Users have successfully used the service from Apple Mac client devices but there are known limitations due to the NHS Identity agent. Support for Apple Mac users is limited to a set number of known fixes after which advice is to use a Windows 10 + device.
• System requirements:
  • Windows 10 or 11 Computer
  • Apple Mac with the latest OS version
  • Azure Virtual Desktop Client

User support

• Email or online ticketing support: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: The service includes access to the GP In The Cloud Helpdesk via phone, during business hours.
• Support available to third parties: No

Onboarding and offboarding

• Getting started: We work with the customer to confirm any additional requirements and provide a demo of the system. The client will then provide us with a list of users names and email addresses to be onboarded. Users are sent details instructions for accessing the service at the time of user creation.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • PDF
• End-of-contract data extraction: No data is stored on the platform. All clinical data is accessed via existing systems hosted on the HSCN.
• End-of-contract process: At the end of the contract, virtual machines used to host user sessions are deleted from the Cloud platform. All user accounts associated with the customer will also be deleted.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: Yes
• Compatible operating systems:
  • MacOS
  • Windows
• Designed for use on mobile devices: No
• Service interface: No
• User support accessibility: None or don’t know
• API: No
• Customisation available: Yes
• Description of customisation: The hosted desktop is deployed from a base image with the common core applications required in Primary Care. Minor customisations can be requested at the time of onboarding such as additional, light applications. Complex requirements will require scoping and incur additional cost.

Scaling

• Independence of resources: Each customer is isolated to their own dedicated host pool within the system which is automatically scaled up and down as user demand increases or decreases. The service uses the Microsoft cloud and available burst capacity to scale.

Analytics

• Service usage metrics: Yes
• Metrics types: Usage stats can be initially provided by requesting a CSV report. A web portal is in development for release in Q3 2022.
• Reporting types:
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Conforms to BS7858:2019
• Government security clearance: Up to Security Clearance (SC)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: Another external penetration testing organisation
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: An export of users onboarded to the platform can be provided in CSV format
• Data export formats: CSV
• Data import formats: CSV

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: GP In The Cloud utilises multiple Microsoft Azure service and is therefore reliant on the underlying Azure SLA's. We will use commercially reasonable efforts to ensure that the Service will have an Availability of 99.9% as measured over each calendar month during the Term.
• Approach to resilience: The GP In The Cloud service is primarily deployed within the UK South region of Microsoft Azure (London Area) with potential expansion into a second region (UK West) for DR and BC. The service is deployed in a resilient architecture across multiple availability zone (Datacentres) within the UK South region. Further information is available on request.
• Outage reporting: The Help Desk phone number and website will be updated to communicate any known issues. Key customer stakeholders will be notified via email.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
• Access restrictions in management interfaces and support channels: The iboss platform provides complete customizable role-based access where administrators can restrict access to any area of the web security controls including allow/block list, all policies, configuration and controls.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: Between 1 month and 6 months
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: Between 1 month and 6 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: ISO/IEC 27001
• Information security policies and processes: ISO 27001 & SOC 2

Operational security

• Configuration and change management standard: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Configuration and change management approach: 1. request change; 2. categorize and prioritize change; 3. analyze and justify change; 4. approve and schedule change; 5. plan and complete implementation of change; 6. post-implementation review"
• Vulnerability management type: Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
• Vulnerability management approach: We use Microsoft Azure security tooling to assess potential threats to the environment. Patching is deployed within 14 days of release. We use various third party and NCSC sources for information on potential threats.
• Protective monitoring type: Undisclosed
• Protective monitoring approach: The platform team of engineers are constantly monitoring the cloud performance across the globe. A continuous automated assessment is performed to proactively ensure the integrity of the service. If during this automated process an alert is thrown the Network Operations Team is immediately notified. The Network Operations team will then take the appropriate steps to assess and as needed mitigate the alert. ; The team also performs regular vulnerability and penetration tests to prevent unauthorized access attempts and any potential malicious activity.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: Detection and Analysis, Containment, Eradication, and Recovery, Post-Incident Activity

Secure development

• Approach to secure software development best practice: Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

• Connection to public sector networks: Yes
• Connected networks: Health and Social Care Network (HSCN)

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  Fighting climate change; ; Integy are consciously looking to make an impact to fighting climate change.; ; We do so by:; ; Working in shared office space within buildings that are working towards net zero greenhouse gas emissions.; ; Actively reviewing our supply chain to ensure we are working with like minded organisations that have a mission to cut emissions.; ; Promote the use of walk/ride/share to work.; ; Utilise electric vehicles where possible.; ; Collaborative work with our supply chain to deliver additional environmental benefits.; ; Deliver services that actively enable the use of home working technology.; ; Reducing waste to landfill through the life of the contract, measured in tonnes.

  Covid-19 recovery

  Covid-19 recovery; ; We acknowledge that COVID-19 has changed the goal posts and as a result the way we work has changed. In order to boost the recovery we as a company:; ; Provide our staff flexibility as standard, with remote working, flexible working hours and various options to ensure that the wellbeing of our team is paramount.; ; We are making time for downtime, hosting team get togethers outside of the work setting, encouraging a 'lets talk' culture.; ; We have are involved directly with a number of organisations in the healthcare sector to provide technology solutions that have no boundaries to where care takes place, during the pilot in early 2022 this service provided over 6,000 hours of additional clinical care to our local area (Devon).

  Tackling economic inequality

  Tackling economic inequality; ; Our flexible working model allows many of our colleagues to travel at times that are cheaper/less busy. Flexible working also supports colleagues from a wider set socioeconomic groups as it can; help colleagues to balance caring responsibilities, health needs, etc.; A cycle to work scheme is available to all employees, giving access to bicycles and cycling accessories at significantly reduced rates.

  Equal opportunity

  Equal opportunity; ; At Integy we hold our values high. We strive to make a positive impact through our work in the public and third sectors.; ; We also want to create social value more broadly through the economic, environmental, and social impact of our actions. As a growing company, this is something we are looking to get better at and do more of.; ; Social value has many different definitions. To us it is the positive impact we have on improving outcomes for people in the community through our work with clients and as an employer. We want to add more value for the wider community.; ; We have partnered with one of our clients, and are in the process of creating an apprenticeship scheme so that college leavers have the option for work placement with us.

  Wellbeing

  Wellbeing; ; We are committed to ensuring and promoting wellbeing, as a result we commit to the 6 standard:; ; Prioritise mental health in the workplace by developing and delivering a systematic programme of activity; ; Proactively ensure work design and organisational culture drive positive mental health outcomes; ; Promote an open culture around mental health; ; Increase organisational confidence and capability; ; Provide mental health tools and support; ; Increase transparency and accountability through internal and external reporting

Pricing

• Price: £40.00 to £55.00 a user
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ask@integy.co.uk. Tell them what format you need. It will help if you say what assistive technology you use.