InPhase Limited

InPhase Health Oversight: LFPSE Incident, Audit, NICE, CQC compliance, performance and assurance

Triangulated suite for NHS and healthcare providers.

Oversight for PDSA continuous improvement in CQC, quality, NHS England LFPSE risk, incident, outcomes, NICE compliance, CAS, clinical audit, integrated governance, PAM, complaints, Friends and Family, planning, performance, policy, nursing dashboards, action plan assurance, ward accreditation, IPC care home assurance, and others.

Features

  • Triangulated view for assurance throughout your organisation
  • NHS England LFPSE certified, incidents, risks, outcomes, good care
  • Automatically updated CQC, NICE, NHSE, CAS and statutory frameworks
  • Fast forms for clinical audits, checklists, data collection, with workflow
  • Customer customisable forms, pages, reports, dashboards, questions, workflow
  • Brilliant visualisations, heat maps, dashboards and alerts at every level,
  • Action plan management, action assurance, PDCA, PDSA,
  • Compliance, governance, assurance, Board Assurance Framework, Premise Assurance Model, others
  • APIs for Datix, PerfectWard, Ulysses, Allocate, data warehouse, Excel
  • Microsoft Teams, Power BI, Office 365 App for Word reporting,

Benefits

  • Enables maximum compliance, assurance and continuous improvement
  • High user adoption on mobile, tablet or desktop without downloads!
  • It's easy to use for everyone, end users and administrators
  • AI and statistics on complete history, trends alerts, exceptions, forecasts
  • NRLS and LFPSE incidents for one version of the truth
  • Cloud first, digital transformation, deployed in weeks,
  • Dramatically reduces processes and removes action duplication
  • Facilitates the right action being taken at the right time.
  • Incredible local consulting backbone to support every customer
  • Fully extensible for all safety, governance, compliance & assurance needs

Pricing

£0 to £12,000 a licence a month

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@inphase.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 13

Service ID

8 6 2 3 8 8 2 5 1 2 8 9 0 6 4

Contact

InPhase Limited Andrew Bingham
Telephone: 0044 (0) 1753 480480
Email: hello@inphase.com

Service scope

Software add-on or extension
No
Cloud deployment model
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
Service constraints
None
System requirements
  • Software and service agreement
  • Web browser

User support

Email or online ticketing support
Email or online ticketing
Support response times
Typically within the hour. 100% in 3 working hours
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
WCAG 2.1 AA or EN 301 549
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability
9 to 5 (UK time), Monday to Friday
Web chat support accessibility standard
WCAG 2.1 AA or EN 301 549
Web chat accessibility testing
As per hub spot compliance
Onsite support
Yes, at extra cost
Support levels
Remote telephone and on line technical support included.
Additional support billable on an hourly rate, or provided as a total solution in the annual fee at agreed levels.
Day rates for consultancy and technical advice and support also available.
Account manager support.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
Project team and plan is established and agreed appropriate to the scope. The software is commissioned and configured for you.
Administrator training for selected modules and options is completed.
User training is via video.
On-going help is provided through your success team consultant, an account manager, the on-line forum, web conferences, and user group sessions and annual user group conference.
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
  • Other
Other documentation formats
  • Word
  • On-line help
  • On-line knowledge base
  • On-line articles
  • On-line forum
End-of-contract data extraction
You can download data via the front end table views and bulk data export features at any time, or InPhase can provide this data extract service at an additional cost.
End-of-contract process
A new contract will be offered within 3-6 months of contract expiry.
If not continuing, then all data may be extracted by the customer using the system options to extracts to csv. Data is always owned by the customer.
A full copy of your database is available at an additional cost.

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Application to install
No
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
Minimal differences in UI, full data capture, self service and reporting is all achieved via the mobile device. No mobile App download!
Service interface
Yes
User support accessibility
WCAG 2.1 AA or EN 301 549
Description of service interface
This is within the application with REST and other API
Accessibility standards
None or don’t know
Description of accessibility
Bi-directional APIs for data interchange and integration including communication of functions.
Accessibility testing
Jaws and other screen reading software
API
Yes
What users can and can't do using the API
Bi-directional APIs for transfer and integration.
Microsoft store download for Microsoft Office 365 Word integration eliminating cut-and-paste.
API documentation
Yes
API documentation formats
  • HTML
  • PDF
  • Other
API sandbox or test environment
Yes
Customisation available
Yes
Description of customisation
Modular apps enable selection of content including options to customise triangulation of information.
Content and design can be customised.
Options for customising: pages, forms, questions, workflow, templates, triggers, imports, exports, layouts, charts, visuals, menus.
Customised by InPhase consultants or customer admins, some personalisation customisation by end users.

Scaling

Independence of resources
The hosted service is available as either a fully elastic resource or as a customer separated fixed resource where desired, ensuring the resource for one customer is never impacted by another customer.

Analytics

Service usage metrics
No

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Conforms to BS7858:2019
Government security clearance
Up to Developed Vetting (DV)

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process
Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach
Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data export approach
Users export either as pfd, excel, word, bmp or other image file type.
automating export to MS Office eg task integration is also possible.
Data export formats
  • CSV
  • ODF
  • Other
Other data export formats
  • Pdf
  • Excel
  • Word
  • Xml
Data import formats
  • CSV
  • Other
Other data import formats
  • Xml
  • Excel
  • SQL
  • Access
  • Oracle
  • ODBC
  • SSRS
  • OData
  • APIs Perfect Ward, Datix, Allocate, and others

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
  • Other
Other protection between networks
2FA at additional cost
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
INPHASE is designed to deliver 100% connectivity and an availability of better than 99.9% for the solution. Over the prior GCloud period INPHASE hosted customers experienced availability of better than 99.975%, excluding scheduled maintenance. Service credits for the non-availability of connectivity are defined.
Approach to resilience
Working with Microsoft Azure the datacentre hardware setup is configured with 100% failover hardware resilience, and ISO27001 certified. InPhase has built its solution upon the Microsoft development stack, in large part for the highly resilient, fault tolerant and performant nature of the platform.
Outage reporting
Email Alerting

Identity and authentication

User authentication needed
Yes
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels
ISO 27001 compliant.
Specified individuals access.
Access restriction testing frequency
At least every 6 months
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
User-defined
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
At least 12 months

Standards and certifications

ISO/IEC 27001 certification
Yes
Who accredited the ISO/IEC 27001
Schellman
ISO/IEC 27001 accreditation date
3 Jan 2022 expiry 18 Jun 2023
What the ISO/IEC 27001 doesn’t cover
Activities other than
-the build, deployment and support of cloud and managed hosting solutions
ISO 28000:2007 certification
No
CSA STAR certification
Yes
CSA STAR accreditation date
On Azure - 19 Jun 2020 expiry 18 June 2023
CSA STAR certification level
Level 3: CSA STAR Certification
What the CSA STAR doesn’t cover
CSA Star certification on INPHASE on Azure covering the networking, compute, database on Azure. Non-Azure not STAR Certified.
PCI certification
No
Cyber essentials
Yes
Cyber essentials plus
Yes
Other security certifications
No

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
Yes
Security governance standards
  • CSA CCM version 3.0
  • ISO/IEC 27001
Information security policies and processes
We have a defined in house structure of security policies that effect each department differently and include external assessment each year to Cyber Essentials Plus. For all matters relating to security the process is immediate CEO level reporting.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
Component traceability, version control, throughout their lifetime with software source control.
Appointed security officer assessment and test.
Vulnerability management type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach
Use of industry leading third party threat detection and prevention software and hardware systems including automated security patch deployments.
Microsoft Gold Partner for related threat and security information and updates. External independent tests.
Protective monitoring type
Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach
ISO 27001 and SSAE 18 compliance.
Detailed access audits.
DOS threat monitoring and automated email alerting.
Incident management type
Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach
IS0 27001 compliant
Multi-channel reporting supported.

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Public sector networks

Connection to public sector networks
Yes
Connected networks
  • Public Services Network (PSN)
  • NHS Network (N3)
  • Health and Social Care Network (HSCN)

Social Value

Fighting climate change

Fighting climate change

InPhase is working towards net zero greenhouse gas emissions.
Staff are supported and offered ways to reduce net carbon emissions.
Covid-19 recovery

Covid-19 recovery

InPhase:
offers re-training for returning to work for those unemployed by COVID-19.
improved workplace conditions including effective social distancing, remote working and sustainable travel including ride to work.
Tackling economic inequality

Tackling economic inequality

We support in-work progression to help people, including those from
disadvantaged or minority groups, to move into higher paid work by
developing new skills relevant to the supply of InPhase solutions.
Equal opportunity

Equal opportunity

InPhase is an equal opportunities employer. All offices have disabled access, disability facilities, we pay for any disability related IT resources and equipment. All recruitment is carried out with prominent equal opportunities promotion.
Wellbeing

Wellbeing

InPhase provides free access to sports facilities for staff and families 7 days per week including golf, badminton, tennis, table tennis, sports hall and fitness training equipment.

Pricing

Price
£0 to £12,000 a licence a month
Discount for educational organisations
No
Free trial available
Yes
Description of free trial
Free trials for the open data portal, apps and vertical market solutions. To set up a free trial contact info@inphase.com or call +44 1753 480480.

14 day periodicity
Link to free trial
http://www.inphase.com/

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@inphase.com. Tell them what format you need. It will help if you say what assistive technology you use.