NHS North of England Commissioning Support Unit (Hosted by NHS England)

RAIDR

RAIDR is a suite of business intelligence dashboards to provide healthcare professionals with a single portal for all their information needs. RAIDR makes complex health datasets/PHM easy to understand and connects disparate data silos. It provides cutting edge risk stratification tools and case finders to help you help your patients.

Features

• Risk stratification and data quality
• Training included
• Service level activity and budget monitoring
• Drill down to patient level
• Prescribing data and prescribing safety
• Quality indicator performance
• Quality Outcomes Framework (QOF) reporting and optimising
• No software installation required
• Wide range of data sets available

Benefits

• Improve data quality and consistency
• Deliver reliable data and accurate information
• Drives efficiency
• More effective case management
• National and local peer comparators
• Rapid implementation
• Achieve high quality cost effective care
• Identify areas for concern and exemplars for best practice
• Supports GMC / PMS contract
• Population Health Management

£0.13 a unit a year

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at necsu.busdev@nhs.net. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

757783308978060

Contact

Business Development
0191 3751789
necsu.busdev@nhs.net

Service scope

• Software add-on or extension: No
• Cloud deployment model: Private cloud
• Service constraints: RAIDR service provision may be forcibly terminated where underlying data systems which input into the RAIDR System are discontinued or undergo change such that the RAIDR System is no longer capable of accepting, or permitted to accept those feeds, and this materially affects RAIDR’s effectiveness and value. ; ; Examples include but are not limited to:; • The terms on which MiQuest software is made available (third party software which enables data extraction from the customer’s IT system for the purpose of provision of the Primary Care Dashboard), change to make it uneconomical, incompatible or unsuitable for use with the RAIDR System.
• System requirements:
  • HSCN connectivity
  • Any modern browser

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: 1 business hour
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Onsite support
• Support levels: Service support comprises :; Customers can access technical support services and also help and advice for non-technical ad-hoc queries and ‘how to’ guidance.; • information and advice by telephone (between the hours of 8.30 a.m. and 5.00 p.m. Monday through Friday, excluding bank and other public holidays), e-mail or by such other means as NECS deems appropriate from time to time to advise on the use of the RAIDR System; ; • the creation and release to the Customer from time to time, at NECS’ sole discretion, of fixes and improvements to the RAIDR System.; Technical support services shall be provided in accordance with the following protocol:-; "Major Fault" - NECS shall as soon as reasonably practicable but in any event within 1 working day of such agreement, supply instructions to the Customer which are intended to circumvent the fault;; "Important Fault" - NECS shall, as soon as reasonably practicable, but in any event within 2 working days of such agreement, supply instructions intended to enable the Customer to circumvent the fault;; "Minor Fault" - NECS shall use its reasonable endeavours to supply instructions to the Customer which are intended to circumvent the fault within 5 working days of such agreement.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: System implementation typically takes 90 days from start to ‘go live’, detailed plans are drawn up with each customer to meet their specific needs.
• Service documentation: Yes
• Documentation formats:
  • PDF
  • Other
• Other documentation formats: Microsoft Word (Where appropriate to do so)
• End-of-contract data extraction: Data is permanently deleted from the source file location via CPA Foundation-grade erasure product and destruction certificates are provided.
• End-of-contract process: At the end of the contract, user access accounts are disabled and data removed. NECS will remove customer data that has been submitted by themselves, about themselves, within the price of the contract. This will not include any 3rd party data.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: No
• Service interface: Yes
• User support accessibility: None or don’t know
• Description of service interface: Capacity Tracker is a web based application. Capacity Tracker supports a variety of screen reading and screen magnification software tools which enable visually and mobility impaired users to easily access and navigate the system.
• Accessibility standards: None or don’t know
• Description of accessibility: Via web interface.
• Accessibility testing: The system strictly adheres to WCAG standards and is regularly tested so we can spot issues and errors across all conformance levels.
• API: No
• Customisation available: Yes
• Description of customisation: Customers can customise how the data they require is visualised i.e. graphs and tables can be set to only display data between selected variables, at full control of the user. Development and requests for change are reviewed and prioritised by the RAIDR User Group.

Scaling

• Independence of resources: Services are load balanced between multiple servers which can be scaled out on demand.

Analytics

• Service usage metrics: Yes
• Metrics types: User access statistics by user and organisation
• Reporting types: Regular reports

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Staff screening not performed
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations: United Kingdom
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with another standard
  • Other
• Other data at rest protection approach: Access to data is by designated staff and is restricted /only available to those who need to process the data.
• Data sanitisation process: No
• Equipment disposal approach: A third-party destruction service

Data importing and exporting

• Data export approach: Download to CSV or PDF
• Data export formats:
  • CSV
  • Other
• Other data export formats: PDF
• Data import formats:
  • CSV
  • Other

Data-in-transit protection

• Data protection between buyer and supplier networks: TLS (version 1.2 or above)
• Data protection within supplier network: Other
• Other protection within supplier network: All data is backed up on a regular schedule.

Availability and resilience

• Guaranteed availability: 99%, assured by contractual commitment
• Approach to resilience: Services are all run on multiple servers and include multiple levels of redundancy.
• Outage reporting: Our IT Service Desk have a process by which the affected users are identified, notified via e-mail and updated.

Identity and authentication

• User authentication needed: Yes
• User authentication:
  • 2-factor authentication
  • Username or password
  • Other
• Other user authentication: User access to the service is controlled by Microsoft Active Directory.
• Access restrictions in management interfaces and support channels: Management access to the service is controlled by Microsoft Active Directory
• Access restriction testing frequency: At least once a year
• Management access authentication: 2-factor authentication

Audit information for users

• Access to user activity audit information: Users receive audit information on a regular basis
• How long user audit data is stored for: At least 12 months
• Access to supplier activity audit information: Users receive audit information on a regular basis
• How long supplier audit data is stored for: At least 12 months
• How long system logs are stored for: Between 1 month and 6 months

Standards and certifications

• ISO/IEC 27001 certification: Yes
• Who accredited the ISO/IEC 27001: BSI
• ISO/IEC 27001 accreditation date: 26/04/22
• What the ISO/IEC 27001 doesn’t cover: 14.1.3 Protecting Application services transactions; 14.2.1 Secure development policy; 14.2.5 Secure development environment; 14.2.6 Outsourced development
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: Data Protection and Security Toolkit

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: No
• Security governance approach: Security governance approach includes: ; • Data Protection and Security Toolkit Compliance; • Cyber Essentials Plus – NECS will continue to seek further accreditation to gain compliance against the Cyber Essentials Plus scheme.; • ISEM (Information Assurance for Small & Medium sized Enterprises) - The IASME standard, based on ISO27001, has developed to create a cyber security standard recognised by the UK Government. ; • ISO27001 – NECS is aligned with the ISO27001 internationally recognised, gold standard, and Information Security standards.
• Information security policies and processes: There is a dedicated IT Security and Compliance team with security leads based within wider ICT teams. The ICT Security and Compliance Manager leads this team and reports into the Head of Infrastructure who reports to the Business Information Services Director. ; ; NECS’ develop Information Security Management Plans which are developed using the valuable practice based experience. The key strategic information security principles that underpin information security management at NECS are considered in any service provided by NECS. ; ; NECS adhere to NHS England Policies and all NECS procedures are based on ITIL good practice.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: There is an ITIL based Change Advisory Board (CAB) that manages the processes in accordance with the NECS Procedures.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: The system is regularly penetration tested for vulnerabilities in coding and security. It is fully protected by Microsoft Update Service and Sophos Threat Management. Both these products are automated and fully managed. The ICT Security Team monitor a number of major security blogs and websites as well as acting on all NHS Digital CareCERT alerts and notifications. To identify vulnerabilities in coding, the system is registered on NCSC Web Check and meets OPSWAT standards. NECS undertakes regular vulnerability scanning on the server infrastructure alongside our Systems Security engineer.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We proactively monitor against known baselines using PRTG, Solarwinds. The baseline is regularly reviewed. Checkpoint identifies cyber security attacks. Sophos identifies if any breaches on the Windows firewall on local machines.
• Incident management type: Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
• Incident management approach: The management of Incidents follows the standards set out by ITIL and defined in our own Incident and Problem Management Policy. Users report incidents via the Service Desk either via Telephone. Each incident is given a unique reference number and a priority which defines the length of time allowed to resolve the incident. Incidents are analysed to look for common trends by reviewing the types of incidents logged and trying to identify root causes. We report each month to our customers on the number of Incidents logged and our performance in terms of meeting the fix time.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: Yes
• Connected networks: Health and Social Care Network (HSCN)

Social Value

• Fighting climate change:

  Fighting climate change

  NECS is committed to fighting climate change and has set up a Corporate Social Responsibility Group, chaired by our Organisational Development and Corporate Services Director to develop and track progress. This group and each initiative are supported by several recycling champions located across NECS estates; whose core objective is to raise awareness of the benefits of combating climate change amongst employees and encouraging participation in any initiatives.; ; We have rolled out innovative technologies that enable remote working such as Microsoft Teams, which combined with our new ways of working framework has led to a reduction in our energy consumption. We have also committed to removing all single use plastics across all our estates and no longer procure any product of this nature. To further reduce our impact, we have also committed to removing all bottled water facilities where an alternative fresh drinking water source is available.; The carbon emission reduction achieved by these schemes in 2019-20 equated to 865 tCO2e, a 38% reduction against the 2017-18 baseline. 2020-21 is likely to be an anomaly year due to the COVID-19 pandemic and national restrictions. To continue our progress to achieve Net Zero, we are adopting carbon reduction targets. We project that carbon emissions will decrease to 1073 tCO2e by 2025. This is a reduction of 54%.; ; All of these implemented measures will be in effect when performing any call-off contract.
• Covid-19 recovery:

  Covid-19 recovery

  As an organisation that is firmly embedded in the NHS, NECS directly supported NHS England and multiple Clinical Commissioning Groups and Foundation Trusts to manage and recover from the impacts of COVID-19. Often working at pace to challenging deadlines, NECS pro-actively managed available resources and internal capacity to ensure that our customers had access to the support they required to reduce the demand on health and social care services. Due to the restrictions that were in place during the pandemic, our employees swiftly embraced new and innovative ways of working to meet demands. ; ; NECS has worked in partnership with our trade union colleagues to produce a new ways of working framework to effectively manage our workforce whilst taking into consideration the implications of COVID-19. The framework sets out NECS’ core principles underpinning our ways of working which are significantly less office centric and aim to provide a better work-life balance for our employees and accelerate our carbon foot reduction. ; ; Lastly, to support sustainable travel, NECS has implemented a 'Cycle to Work' scheme. This allows NECS staff to loan bicycles and cycling safety equipment, as a tax-free benefit, as part of the Government’s initiative to promote healthier journeys to work and reduce environmental pollution.; All of these initiatives and policies will be in effect during delivery of any call-off agreement, and we would be happy to share best practice with suppliers and customers where possible.
• Tackling economic inequality:

  Tackling economic inequality

  ECS has a clear social purpose to create jobs and generate wealth for our communities. In response to COVID-19 we developed our NECS100 programme, providing employment and training opportunities to the communities we serve and particularly for those who reside in deprived areas. The programme has seen the recruitment of one-hundred apprentices and graduates into our organisation. Each of the new recruits engaged in a tailored development programme designed to help them integrate into the organisation, develop lifelong skills, and obtain recognised qualifications. ; Our aim is to continue to provide employment and training opportunities to the communities we serve. The third cohort of the programme is just about to commence, which will see an additional sixty-four apprentices and graduates join our organisation. ; ; To create opportunities for entrepreneurship and help new, small organisations grow, we are working closely with NHS England to support their Clinical Entrepreneur Programme. The programme aims to provide the commercial skills, knowledge and experience needed to successfully develop and disseminate innovative solutions to the challenges facing the NHS for the benefit of patients, staff and the wider NHS. More than 500 individuals including doctors, dentists, healthcare scientists, nurses and midwives, allied health professionals and pharmacists, have joined the programme since it launched in 2016. Through the programme, NECS will offer expert mentoring and bespoke training to help entrepreneurs develop innovative ideas into products and businesses.; ; Where possible, NECS will look to develop the skills of its employees and those within the NECS100 programme through the delivery of any call-off agreement.
• Equal opportunity:

  Equal opportunity

  NECS is committed to addressing inequalities in our organisation and to that end we have been reporting against the Workforce Race Equality Standard (WRES) since 2016, striving to make improvements year on year. We are now able to report effectively on every WRES indicator, giving us a much clearer view of the challenges we face in relation to the WRES and in creating a fairer, more inclusive workplace.; ; NECS is a disability confident employer and has taken measures to ensure that any opportunity for discrimination during the recruitment process is minimised. Personal information is removed from application forms prior to short listing and is used for monitoring purposes only. NECS ensure that objective selection criteria are used, the decision-making process is recorded, and it can be demonstrated that appointments are made on merit. We also utilise NHS Agenda for Change payrates, ensuring equal pay across the organisation.; ; To tackle inequality in training and development we refreshed our Talent Management Programme in 2020. The development included providing NECS employees with the opportunity to undertake stretch assignments to enhance core competencies and wider learning opportunities. Further to this and in addition to progressing our current mentoring offer by training and recruiting more mentors to the programme, a ‘reverse mentoring’ programme has been developed, providing opportunities to colleagues from under-represented groups to have a reciprocal mentoring relationship with senior level colleagues to share learning and enhance employment opportunities.; ; All of these initiatives and policies will be in effect during delivery of any call-off agreement, and we would be happy to share best practice with suppliers and customers where possible.
• Wellbeing:

  Wellbeing

  NECS recognises that good mental health and wellbeing are associated with improved outcomes for employees including longevity, physical health, and productivity and we are committed to implementing measures which encourage and promote a healthy workforce. ; ; NECS has a dedicated Health and Wellbeing Group that ensures that NECS has an integrated approach to the management of health and wellbeing, therefore, maintaining and improving the health and wellbeing of staff within the organisation. The aim of the group is to provide a framework for NECS to take a proactive and engaging approach to enhancing the health and wellbeing of our employees.; The group is supported by several health and wellbeing champions, who play a key role in supporting and developing a culture that contributes not only to improve the physical and mental health and wellbeing of their colleagues but also themselves. ; ; As part of our strategy to safeguard and support staff with mental health concerns, NECS has a number of employees trained as mental Health First Aiders (MHFA's), who provide responsive assistance to employees and managers in need of help and direction. Whilst MHFA's are not clinically trained in counselling, diagnosing, or treating mental health, they are able to spot the early signs of a mental health problem and signpost and direct to the appropriate and relevant intervention and support agencies.; ; All of these initiatives and policies will be in effect during delivery of any call-off agreement, and we would be happy to share best practice with suppliers and customers where possible.

Pricing

• Price: £0.13 a unit a year
• Discount for educational organisations: No
• Free trial available: No

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at necsu.busdev@nhs.net. Tell them what format you need. It will help if you say what assistive technology you use.