EXRT INTELLIGENT HEALTHCARE LIMITED

eXRt - Resynk - Stroke Rehabilitation Using Virtual Reality

At eXRt Intelligent Healthcare we seek to create a sustainable, self-managed and accessible physical rehabilitation platform to mobilise neurological disabilities.

We strive to bring the latest in innovation, creativity and ingenuity to our products to ensure accessible rehabilitation to those that need it.

Features

• Stroke Rehabilitation via Virtual Reality (VR).
• Remote management of physiotherapy.
• Games based rehabilitation and physiotherapy.
• Real time, remote clinical monitoring.
• Patient self-management.
• Personalised Care.
• Virtual Wards.
• Real dashboards, analytics and reporting.
• Patient to Physiotherapist communications.
• Standardised, Gold Standard physiotherapy techniques.

Benefits

• Actively manage patients in their home.
• Empower patients to self-manage at home.
• Increase time spent on rehabilitation versus norms.
• Making stroke rehabilitation therapy fun, driving adherence.
• Deliver game based therapy for the patient.
• Enable real time monitoring of rehabilitation progress by clinician.
• Enable real time data collection to support personalised care.
• Support early discharge and virtual wards, by delivering at home.
• Remote physiotherapist support, helping recovery from Covid19.
• Increased time spent on Physiotherapy, improving recovery.

£1,125 to £1,500 a user a year

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at dominic@exrt.io. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

622208330098465

Contact

Dominic Holmes
07514575765
dominic@exrt.io

Service scope

• Software add-on or extension: No
• Cloud deployment model: Hybrid cloud
• Service constraints: None that we are aware of.
• System requirements:
  • VR Hardware requires charging after prolonged use
  • An Internet connection for communication between the apps
  • Web Application requires a web browser (Chrome, Edge, Firefox, Safari)
  • Web application requires PC, Laptop, Smartphone or Tablet device.

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: EXRT provides email and phone support, Monday to Friday, 9am until 5pm, excluding bank and public holidays.; ; Although highly unlikely, if ever a customer wanted to consider extended weekday hours support or support at weekends or on holidays, we would be happy to discuss, but there would be additional charges.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: We offer a standardised level of support to all our customers and users. ; ; We operate 9am to 5pm, Monday to Friday (excluding bank and public holidays).; ; With those hours, we aim to answer all emails and phone calls immediately. We aim to respond to any incidents immediately, and all contacts in no more than 2 hours.; ; Outside of this operational support we will also meet regularly with customers as part of our account management. How often is required, will be agreed with the customer, as this may vary.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: EXRt's stroke rehab solution - Resynk - delivered through VR is highly intuitive. The user requires a VR headset, and access is given to the eXRt platform. ; ; Online tutorials in the virtual reality world are available to guide the user through using the software for their physiotherapy.; ; For enterprise customers (eg: NHS Trusts), we can provide in person training for the stroke team or other, so they can support end users, or (for an additional charge) we can provide support to individual end users. ; ; However, we have designed our solution to be "plug and play", so that everyone, even those with limited digital skills, can benefit from the stroke therapy it provides.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • ODF
  • PDF
• End-of-contract data extraction: We have not yet had the situation where we have reached an end of a contract and data has needed to be provided, to be transferred to another system, as part of the contract moving to another supplier.; ; However, the central data repository that our solution has to produce the real time dashboards, monitor KPIs, show progress on rehabilitation, etc, can also be extracted and passed to the customer for them to work with their new supplier to ensure this data is not lost, and continuity of care is provided.; ; eXRt wishes to ensure that patient care remains uninterrupted, so should a customer of ours wish to move to another supplier, we will work with the customer and new supplier to ensure a smooth transition.
• End-of-contract process: We have not yet had the situation where we have reached the end of a contract and data has needed to be provided, to be transferred to another system, as part of the contract moving to another supplier.; ; Upon end of contract, customer accounts will be deactivated, any data that needs extracted for third party/new supplier will be sent to the customers. ; ; All related customer or end-user data will be archived for a period of time as customers may want to reactivate accounts or need additional access to there data.; ; This extract is included in our price.; ; eXRt will work with our customers and any new suppliers at end of contract to ensure a smooth transition of service and continuity of care of the end patients.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
• Application to install: Yes
• Compatible operating systems: Android
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: For the web dashboard for remote monitoring, the data and contents remain the same across desktop, smartphone and tablet devices. ; ; The user interface on each device changes slightly to ensure high usability but remains intuitive enough that if changing between devices, the information remains easily accessible and familiar.; ; The VR Headsets run on the android operating system which is mobile ready
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: Users access eXRt via their VR headset to access the therapies and exercises through physio games as well as support and communication features to chat with their clinician(as well as other information).; ; Clinicians access information on the users of the system (their patients) through any standard mobile, laptop or desktop device. The information available allows the clinician to view all patient physiotherapy progress such as repetitions completed, time spent doing physiotherapy, what exercise they perform and how well they got on. This is all displayed over time in weeks and months to show patient improvement using the VR.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: We believe the VR headsets are assistive to those who find other forms of computer interactions challenging, for example, those recovering from stroke, and so the VR headset, using our Resynk product, and the interface controls offer an easier method of usage than traditional keyboards, mice and other devices, as well as all the benefits of the VR therapies. ; ; We have trialled our solution with over 113 stroke patients in there own home for 6 months. ; ; It received and 86% out of 100% on the system usability scale (the user interface). This excellent score shows that the user interface is very easy to use for stroke patients.; ; Our Resynk solution is now being used in the NHS, in Belfast, where it is being used by the stroke team to help patients recover better and more quickly, through increased rehabilitation levels.
• API: No
• Customisation available: No

Scaling

• Independence of resources: Our cloud software auto scales. ; ; The cloud technologies used allows our application to add resources such as additional memory, CPUs to handle large amount of users and high usage demand. ; ; The cloud software uses regions to also manage high usage demand, meaning high usage demands in one region will not affect any other regions. ; ; In each region multiple copies of the application can be created as user demand increases meaning users can be provisioned and more resources can be dedicated to handle more users.

Analytics

• Service usage metrics: Yes
• Metrics types: We provide a full range of metrics both for the user, the physio or other clinician and the organisation. ; ; We can look at the progress patients are making on the different games that support their rehab and therapy through Resynk. ; ; Time spent on each exercise, when they did the exercise (are they a morning person, evening?), what level of exercise they have reached etc can all be reported on.; ; We can provide a full range of measures on all usage of the platform, through our analytics component.
• Reporting types: Real-time dashboards

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: Up to Developed Vetting (DV)

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: Yes
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a CHECK service provider
• Protecting data at rest: Physical access control, complying with CSA CCM v3.0
• Data sanitisation process: Yes
• Data sanitisation type:
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
• Equipment disposal approach: Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

• Data export approach: Users will need to request this through customer support. Customer support will export the data in the requested format and send securely to the user for download.
• Data export formats:
  • CSV
  • Other
• Other data export formats: JSON
• Data import formats:
  • CSV
  • Other
• Other data import formats: JSON

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: We aim to have our platform available 100% of the time, 24/7. We contract for 99.99%, just in case there is some requirement for maintenance to take place.; ; The nature of our service means that we cannot control the networks that our service may utilise as they are the responsibility of other organisations.
• Approach to resilience: Our datacentre provides various approaches to ensure high availability and resilience of our service. Approaches include; ; Automated database replication and self-healing clusters ensures resilience by making identical copies of the primary data storage as secondary storage and self healing helps if the primary database fails then one of multiple secondary databases can be switch to. This ensures little to no downtime.; ; Multi region clusters helps reduce the impact of all users being effected by cloud downtime. If one region goes fails the other regions remain operational for users to uses. If a cloud provider fails for whatever reason our datacentre can switch between multiple cloud providers to ensure high availability and resilience. The datacentres monitoring tools can be used to predict potential future failures and prevent before occurrence.
• Outage reporting: In the unlikely event of an outage to our platform, we communicate the outage to our customers via phone and email, and to all users via a message at the entrance to the solution.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password
• Access restrictions in management interfaces and support channels: Via 2 factor authentication.
• Access restriction testing frequency: At least every 6 months
• Management access authentication:
  • 2-factor authentication
  • Identity federation with existing provider (for example Google Apps)
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users have access to real-time audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: No
• Other security certifications: No

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: We take security governance very seriously. We have a full range of security and wider information security policies in place, and being an SME a very short chain in terms of alerting. Any security event that do occur has the immediate attention of the CEO and CTO.; ; We adopt 3 main strategies ; ; Prevent before breach: Building secure guard rails and automatically enforcing stringent policy; ; Detect as early as possible: Continuous discovery of new workloads and resources across the cloud environment ; ; Remediate at speed and scale: A defined remediation workflow to ensure timely response and action against a security violation
• Information security policies and processes: Our system will allow, and in fact require, certain information to be collected about its users. This information includes IP addresses, browser information, viewer metadata and login credentials. All our processes are in compliance with applicable national and European law such as the GDPR.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: Due to the software nature of our product our team track all internal and external changes requests through our project management tools (e.g. bug tracker, task management). Any changes made to the software application by the development team are tracked and uploaded to our version control tool called Git through GitHub. Official software releases to customers are accompanied by release notes and build information.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Our vulnerability management process includes the following components:; 1) vulnerability scan every year, 2) define remediating action, 3) implement remediating actions, 5) rescan to gauge impact of remediation plan.; ; Once we have identified vulnerabilities, we deploy patches as soon as possible to our services. Whilst this can vary depending on the complexity of the patch, we aim for within a few weeks.; ; We get information about potential threats from vulnerability scans through our cloud provider.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We use AWS cloud security monitoring tools. If a compromise is identified, immediate action is taken such as deletion of compromised access keys to stop access to AWS. Remove resources that are compromised or created as a result of the compromise. After compromise is removed regular audits are completed for a short time to reduce the risk of missed compromises.
• Incident management type: Supplier-defined controls
• Incident management approach: User contact the Service desk to log a call and is provided with a reference number and applied a priority. ; ; A member of the Service Desk will perform first line troubleshooting and diagnostics, if the first line troubleshooting and diagnostics resolves the issue then it is agreed with the user to close the issue. ; ; If first-line action can't revolve the issue, then the issue is communicated to the relevant team; (s) for detailed investigation to resolve the issue. Once resolved, in agreement with the user the issue is closed. However, if the issue cannot be resolved the escalation process begin.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Tackling economic inequality
  • Equal opportunity
  • Wellbeing

  Fighting climate change

  eXRT's VR based stroke rehab solution - Resynk - specifically enables patients to manage their own therapy at home, whilst still doing approved exercises, overseen by a physio or other clinician.; ; This reduces the need for patient and clinician to travel, so helping to fight climate change by reducing unnecessary emissions.; ; Based in Northern Ireland, much of our customer facing and other meetings work is conducted remotely, therefore removing or reducing the need for flights and the emissions they cause.; ; eXRt is driven to reducing its impact on the planet by doing what it can to reduce its carbon footprint such as going paperless, using sustainable partners concerned with there carbon footprint, our staff are encouraged to car share to reduce emissions and we offer remote working to limit travel and high office emission usage. ; ; We are always looking to be carbon neutral sooner and finding ways to give back to our planet towards net zeros ambitions.

  Covid-19 recovery

  eXRT's VR rehab solution - Resynk - specifically helps to reduce the need for face to face contact between patient and clinician, with the patient doing the exercises at home and the physio or other clinician overseeing and if need be communicating remotely.; ; By increasing the capacity and capability of stroke services to deliver rehabilitation through physiotherapy in people's homes, eXRt REsynk can help to ease workforce pressures and reduce waiting lists and wait times.; ; This helps to address the recovery from Covid19, both in terms of reducing the risk of transmission, as well as helping the physio workforce, where as with other healthcare workers, there is a shortage of staff, enabling the delivery of more therapy and helping patients recover from a stroke.

  Tackling economic inequality

  eXRt is based in Northern Ireland, one of the most deprived regions of the UK. ; ; All our staff are based in Northern Ireland, and therefore we are supporting the local economy to increase employment, provide jobs and growth in an area that has traditionally struggled.; ; These services are then delivered across the whole UK and beyond.

  Equal opportunity

  eXRt is an equal opportunity employer and employs people from a range of diverse backgrounds and communities.; ; One of the primary objective of our rehab software is to reduce the severity of patient disability. with reduced disability patients can get back to work sooner.

  Wellbeing

  eXRt's core mission is to deliver VR based stroke rehab software that supports the wellbeing of patients and helps them recover and hit the recovery objectives they want to achieve faster and better. ; ; The rehab software is design to fit into the current care pathway to produce more efficient processes for physiotherapists and other clinicians. A more efficient care pathway eases the pressure on physios to deliver more physio to an increasing patient population.; ; We take a similar approach with our staff. Although a small company, at present, or perhaps because we are a small company, we value all our staff, and support them as required.

Pricing

• Price: £1,125 to £1,500 a user a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Skills Framework for the Information Age rate card

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at dominic@exrt.io. Tell them what format you need. It will help if you say what assistive technology you use.