MaPPs: Medicines A Patient Profile Summary
An online healthcare staff system that provides bespoke patient summaries of simplified essential information about medicines in various accessible formats (text, easy reads, read aloud, language translations), with adherence resources including Reminder Charts and Medicines Administration charts to improve safety, health outcomes, improve patient experience and reduce waste.
Features
- Shortlist finalist for HSJ Improving Care with Technology Award
- Simplified clear essential information about medicines
- Bespoke patient summary information about all of their medicines
- Credible trustworthy and consistent content
- Up to date overseen by clinicians
- Multilingual translations to any language
- Reminder charts to support scheduling medicines
- Medicines Adminstration charts to track medicines taking
- Healthcare Excellence Trough Technology Innovation 2023
- Deployment within 72 hours
Benefits
- Improves workflow as saves staff time discussing medicines
- Improves patient safety from side effects and incorrect administration
- Improves medicines taking behaviour and reduces waste
- Reduces preventable medicines related hospital admissions
- Improves Patient experience, empowerment and shared decision making
- Increases knowledge and awareness for both staff and patients
- Meets the NHS Accessible Information Standard
- Provides for patients where English is not a first Language
- Provides for patients with a Learning Disability
- Provides for any patient with a communication need
Pricing
£104.00 to £18,000 a licence a year
- Free trial available
Service documents
Request an accessible format
Framework
G-Cloud 14
Service ID
9 6 4 3 4 3 4 7 4 6 4 5 3 5 9
Contact
MISTURA INFORMATICS LTD
Lisa Armstrong
Telephone: 01670818229
Email: lisa.armstrong@misturainformatics.org
Service scope
- Software add-on or extension
- Yes, but can also be used as a standalone service
- What software services is the service an extension to
- What's my Drug?
- Cloud deployment model
- Private cloud
- Service constraints
- None
- System requirements
-
- Internet Access
- Printer for leaflets
User support
- Email or online ticketing support
- Email or online ticketing
- Support response times
- 72 hours EMail support
- User can manage status and priority of support tickets
- Yes
- Online ticketing support accessibility
- WCAG 2.1 A
- Phone support
- Yes
- Phone support availability
- 9 to 5 (UK time), Monday to Friday
- Web chat support
- No
- Onsite support
- No
- Support levels
-
Included in the subscription is email support and phone support (9am-5pm UK).
Technical account manager nominated in Service Level Agreement - Support available to third parties
- No
Onboarding and offboarding
- Getting started
- Online training and documentation
- Service documentation
- Yes
- Documentation formats
- End-of-contract data extraction
- Issued as a report to the administrator
- End-of-contract process
- End of the agreement, service notice and disconnection procedure implemented as per Service Level Agreement.
Using the service
- Web browser interface
- Yes
- Supported browsers
-
- Microsoft Edge
- Firefox
- Chrome
- Safari
- Opera
- Application to install
- No
- Designed for use on mobile devices
- Yes
- Differences between the mobile and desktop service
- Responsive Web Application that works across mobile or desktop
- Service interface
- No
- User support accessibility
- WCAG 2.1 A
- API
- No
- Customisation available
- No
Scaling
- Independence of resources
- Usage monitored and have mirror servers to support any disruptions
Analytics
- Service usage metrics
- Yes
- Metrics types
-
Report of access on the portal by
Medicine Name
Medicines Formation
Language accessed
Easy Read accessed - Reporting types
- Regular reports
Resellers
- Supplier type
- Not a reseller
Staff security
- Staff security clearance
- Other security clearance
- Government security clearance
- Up to Baseline Personnel Security Standard (BPSS)
Asset protection
- Knowledge of data storage and processing locations
- Yes
- Data storage and processing locations
- United Kingdom
- User control over data storage and processing locations
- No
- Datacentre security standards
- Supplier-defined controls
- Penetration testing frequency
- At least once a year
- Penetration testing approach
- Another external penetration testing organisation
- Protecting data at rest
- Physical access control, complying with another standard
- Data sanitisation process
- Yes
- Data sanitisation type
- Deleted data can’t be directly accessed
- Equipment disposal approach
- In-house destruction process
Data importing and exporting
- Data export approach
- Request as a report to the administrator
- Data export formats
-
- CSV
- Other
- Data import formats
- CSV
Data-in-transit protection
- Data protection between buyer and supplier networks
- Private network or public sector network
- Data protection within supplier network
- Legacy SSL and TLS (under version 1.2)
Availability and resilience
- Guaranteed availability
- Uptime of 99.9%
- Approach to resilience
- It’s available on request
- Outage reporting
- Email alerts
Identity and authentication
- User authentication needed
- Yes
- User authentication
- 2-factor authentication
- Access restrictions in management interfaces and support channels
- A designated super admin user is allocated for any subscribing / NHS organisation. This super admin is in control of all user access.
- Access restriction testing frequency
- At least once a year
- Management access authentication
-
- 2-factor authentication
- Other
- Description of management access authentication
- Each organisation has a designated super admin. This super admin is in direct contact with Mistura. This super admin is in control of all NHS organisational user access within their organisation
Audit information for users
- Access to user activity audit information
- No audit information available
- Access to supplier activity audit information
- No audit information available
- How long system logs are stored for
- Between 6 months and 12 months
Standards and certifications
- ISO/IEC 27001 certification
- Yes
- Who accredited the ISO/IEC 27001
- British Assessment Bureau
- ISO/IEC 27001 accreditation date
- 24/04/2022
- What the ISO/IEC 27001 doesn’t cover
- All covered
- ISO 28000:2007 certification
- No
- CSA STAR certification
- No
- PCI certification
- No
- Cyber essentials
- Yes
- Cyber essentials plus
- Yes
- Other security certifications
- Yes
- Any other security certifications
- NHS DSP Toolkit
Security governance
- Named board-level person responsible for service security
- Yes
- Security governance certified
- Yes
- Security governance standards
- ISO/IEC 27001
- Information security policies and processes
-
Mistura Information Security Policy v:4
Overview
Technical (Appendix 1)
Operational Security (Appendix 2)
Security Management (Appendix 3)
Staff Training Information Security Needs Analysis on Induction and at Annual Appraisal
Incident Reporting Process
Annual Audit Process
Reporting: Guideline within the Mistura Quality Manual v:4
Monitoring is via Quarterly Senior Management Team Meetings. Review of Incidents, Complaints and Compliments. RIsk Assessments and Review. Risk Register and mitigations agreed and implemented.
Available on request
Operational security
- Configuration and change management standard
- Supplier-defined controls
- Configuration and change management approach
- Described in Mistura Information Security Manual - Appendix Operational security - available on request
- Vulnerability management type
- Supplier-defined controls
- Vulnerability management approach
- Described in Mistura Information Security Manual - Appendix Operational security - available on request
- Protective monitoring type
- Supplier-defined controls
- Protective monitoring approach
- Described in Mistura Information Security Manual - Appendix Operational security - available on request
- Incident management type
- Supplier-defined controls
- Incident management approach
-
Described in Mistura Information Security Manual - Appendix Operational security - available on request
Mistura Incident Management Policy
Secure development
- Approach to secure software development best practice
- Supplier-defined process
Public sector networks
- Connection to public sector networks
- No
Social Value
- Social Value
-
Social Value
- Fighting climate change
- Tackling economic inequality
- Equal opportunity
- Wellbeing
Fighting climate change
Net Zero - The digital medicines information service allows distribution of the resources via email directly from the system rather than providing as printed paperTackling economic inequality
The digital medicines information service provided is independent of the extent to which income is distributed, is free to service users at the point of delivery provided in different languages with translations.Equal opportunity
The digital medicines information service has easy read pictograms and short phrases for people with a learning difficultyWellbeing
The digital medicines information service enables people to more safely and effectively manage their medicines, improves health outcomes from improved medicines taking behaviour at the same time it reduces preventable harm from early identification of an important adverse drug reaction.
Pricing
- Price
- £104.00 to £18,000 a licence a year
- Discount for educational organisations
- No
- Free trial available
- Yes
- Description of free trial
- 6 week free trail available