Skip to main content

Help us improve the Digital Marketplace - send your feedback

VANNIN HEALTHCARE UK LTD

Vannin Greencube Electronic Health Record

Enterprise Electronic Health Record Software deployed in over 300 hospitals globally.

Features

  • Admissions
  • Hospitalisation Module
  • Nursing Care
  • Surgical Module
  • RIS, PACS, LIS
  • Pharmacy Module
  • Rehab Module
  • Billing Module
  • Patient, Nurse, Doctor and Manager apps
  • KPIs and Decision Making algorithms

Benefits

  • Complete Software for Healthcare Management
  • HIMMS Stage 7 capable - The highest level

Pricing

£50,000 a licence

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ovanveen@vanninhealthcare.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

8 2 8 7 2 8 0 9 1 3 8 0 6 3 2

Contact

VANNIN HEALTHCARE UK LTD Oliver van Veen
Telephone: +44 330 223 6623
Email: ovanveen@vanninhealthcare.com

Service scope

Software add-on or extension
No
Cloud deployment model
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
Service constraints
No constraints and will be built bespokely to the clients needs.
System requirements
  • Internet
  • All else will be made depending on the clients wishes

User support

Email or online ticketing support
Email or online ticketing
Support response times
Immediately - 24/7 Support throughout the year.
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
None or don’t know
Phone support
Yes
Phone support availability
24 hours, 7 days a week
Web chat support
Web chat
Web chat support availability
24 hours, 7 days a week
Web chat support accessibility standard
None or don’t know
How the web chat support is accessible
Through the system itself or through the apps.
Web chat accessibility testing
Working throughout more than 300 hospital globally and more than 10 million patients.
Onsite support
Onsite support
Support levels
We would provide both local support as well as remote.
We aim to fix any issues within 24 hours of them arising.

For the UK Government we would be placing a team locally to any project so as to have even better KPIs than standard.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Throughout the implementation process which typically takes 3-6 months the system is build around the clients needs.
There will be several weeks of training with the key personell within the hospital on-site.
Vannin would also provide a manual and user documentation.
Service documentation
Yes
Documentation formats
PDF
End-of-contract data extraction
Users manage their own data throughout the whole contract period.
End-of-contract process
Support would finish at the end of the contract term. There is a transition period that would be agreed on forehand before entering into contract with any hospital or group of hospitals to make the transition easier.

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Application to install
No
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
The mobile apps are an add on to the system for the doctors and nurses to work besides the bedside.
Managers to have complete visibility wherever they are on the KPIs set.
For patients they can see their entire health record and book appointments.
Service interface
No
User support accessibility
None or don’t know
API
No
Customisation available
Yes
Description of customisation
On implementation the system is localised and made for the clients workflows.

Scaling

Independence of resources
Data is stored by the customer.

Analytics

Service usage metrics
Yes
Metrics types
Power BI
Reporting types
Real-time dashboards

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Yes
Datacentre security standards
Managed by a third party
Penetration testing frequency
At least every 6 months
Penetration testing approach
In-house
Protecting data at rest
Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
A third-party destruction service

Data importing and exporting

Data export approach
User defined on implementation.
Data export formats
CSV
Data import formats
CSV

Data-in-transit protection

Data protection between buyer and supplier networks
Other
Other protection between networks
Data is not stored within our network but by the customer.
Data protection within supplier network
Other
Other protection within supplier network
Data is not stored within our network but by the customer.

Availability and resilience

Guaranteed availability
99.9%
Approach to resilience
Remote and local support with 24/7 access to support. Experience in more than 300 hospitals whereby we guarantee 99.9% uptime throughout the lifespan of the product.
Data is stored by the customer.
Outage reporting
Alerts.

Identity and authentication

User authentication needed
Yes
User authentication
Username or password
Access restrictions in management interfaces and support channels
Management set the visibility to different stakeholders. IE Nurses will only see the part of the system they need to see.

Management interfaces include Power BI and key KPI data which is not visible to anyone else.
Management logins are protected by 2 factor authentification.
Access restriction testing frequency
At least once a year
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
User-defined
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
User-defined

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
Depending on the hospital.
ISO/IEC 27001 accreditation date
Depending on the hospital.
What the ISO/IEC 27001 doesn’t cover
Every hospital when doing the implementation of our system we accredit the hospital to ISO 27001 certification.

Vannin can show plenty of examples and case studies especially in Spain of this.
ISO 28000:2007 certification
No
CSA STAR certification
Yes
CSA STAR accreditation date
Depending on the service used.
CSA STAR certification level
Level 5: CSA STAR Continuous Monitoring
What the CSA STAR doesn’t cover
Cloud storage is through 3rd party vendors that are all CSA Star certified to the highest standards.
PCI certification
No
Cyber essentials
No
Cyber essentials plus
No
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
ISO/IEC 27001
Information security policies and processes
All policies follow ISO Standards.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Changes and configuration is made throughout the lifespan of the contract.
All changes adhere to security standards set in the country.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Team of 70 developers patching any vulnerabilities.
Threats to service are monitored on a continuous basis.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Identifying potential compromises involves a multifaceted approach encompassing proactive monitoring, threat intelligence analysis, and vulnerability assessments. By continuously scrutinizing network traffic, system logs, and user behavior, potential compromises can be detected through anomalies or suspicious activities.
Incident management type
Supplier-defined controls
Incident management approach
Having pre-defined processes for common events streamlines incident response and ensures consistency in handling various scenarios. These processes typically include steps for incident identification, classification, initial containment, investigation, resolution, and post-incident analysis. Users can report incidents through multiple channels, such as dedicated helpdesk portals, email, or phone.

Secure development

Approach to secure software development best practice
Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Connection to public sector networks
Yes
Connected networks
  • Public Services Network (PSN)
  • NHS Network (N3)
  • Joint Academic Network (JANET)
  • Scottish Wide Area Network (SWAN)
  • Health and Social Care Network (HSCN)
  • Other
Other public sector networks
The system can connect to any public sector network.

Social Value

Social Value

Social Value

Fighting climate change

Fighting climate change

Greencube has been completely paperless for over 10 years.
For example, Barking, Havering, and Redbridge University Hospitals NHS Trust estimates that it creates 25 million pages of A4 a year. This for a few trusts could make a dramatic difference in fighting climate change.

Pricing

Price
£50,000 a licence
Discount for educational organisations
No
Free trial available
No

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at ovanveen@vanninhealthcare.com. Tell them what format you need. It will help if you say what assistive technology you use.