MEDWISE AI LIMITED

medwise.ai

Medwise.ai is a search platform that enables clinicians to find medical guidance and policy documents at the point of care, improving productivity and adoption of best practices. Healthcare organisations can customise the platform, incorporate local documents and use analytics to understand unmet information needs and reduce unwarranted variation in care.

Features

• AI-powered search across siloed public and private content sources
• A single source of information for your healthcare workforce
• Integration with local documents such as guidelines, pathways and policies
• Disease-agnostic and highly customisable platform
• Instant access to actionable information snippets within complex documents
• Disseminate approved clinical information to your healthcare workforce
• Usage reporting and customisable analytics
• Export data to integrate with existing governance tools and systems
• Notifications, messages and updates to users

Benefits

• Standardise care across teams and organisations
• Enable workforce to be more productive
• Support transient staff, locums and telemedicine workflows
• Improve adherence to best practice
• Reduce unwarranted variation in care
• Reduce clinical risk and improve patient safety
• Up-skill your workforce and support competency-based care delivery
• Identify your workforce’s unmet information needs
• Discover and address gaps in clinical documentation
• Release time for better patient care

£5,000 to £122,500 a licence

• Education pricing available
• Free trial available

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@medwise.ai. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 14

Service ID

964399743164924

Contact

Dr Keith Tsui
07397321524
hello@medwise.ai

Service scope

• Software add-on or extension: No
• Cloud deployment model:
  • Public cloud
  • Private cloud
• Service constraints: No service constraints
• System requirements:
  • Internet access
  • Internet browser (desktop)
  • Mobile internet browser (Android, iOS)

User support

• Email or online ticketing support: Email or online ticketing
• Support response times: · Online user guides and videos; · Support queries are responded to within 48 business hours.
• User can manage status and priority of support tickets: No
• Phone support: Yes
• Phone support availability: 9 to 5 (UK time), Monday to Friday
• Web chat support: No
• Onsite support: Yes, at extra cost
• Support levels: All users have access to email support as well as online user guides and videos.; ; Support queries are responded to within 48 business hours.
• Support available to third parties: Yes

Onboarding and offboarding

• Getting started: Medwise works with every customer to customise the medwise.ai platform content (websites, clinical guidelines, local pathways, policies and procedures) to their unique requirements. ; ; Following the initial setup of the platform, Medwise provides onboarding workshops for administrative users ; ; All users are provided with online user documentation, user guides and how-to videos.
• Service documentation: Yes
• Documentation formats:
  • HTML
  • Other
• Other documentation formats: Video
• End-of-contract data extraction: Users can export their data in a standard format such as CSV at any time, including at the end of contract.
• End-of-contract process: Data can be extracted at the end of the contract at no additional cost. Data can also be deleted upon request, at no cost. Users can continue to make use of the free-tier version of the product.

Using the service

• Web browser interface: Yes
• Supported browsers:
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
• Application to install: No
• Designed for use on mobile devices: Yes
• Differences between the mobile and desktop service: Medwise.ai is designed as a web application, accessible through desktop and mobile browsers. ; The full feature set is available on the desktop. User-facing services (search and account management) are available on mobile devices.; The mobile app does not allow access to extended user features such as the user dashboard and analytics.; Administrative access is designed for web app (desktop) use.
• Service interface: Yes
• User support accessibility: WCAG 2.1 AA or EN 301 549
• Description of service interface: The admin interface for medwise.ai is a dashboard that allows admin users to view data analytics, as well as upload, local documents content such as guidelines and policy documents, approve website content and set up filter groups. The dashboard also provides access to analytics and usage reports for their organisation.
• Accessibility standards: WCAG 2.1 AA or EN 301 549
• Accessibility testing: N/a
• API: No
• Customisation available: Yes
• Description of customisation: The platform is highly customisable. The following customisation features are available to administrative users:; ; · Add, edit and manage the right group of national and local guidelines, referral pathways, or local policies and procedures to provide accurate, evidence-based and actionable information to their clinicians.; · Add, edit and manage visibility of search filters and groups according to staff needs.; · Send custom update and notification messages to users.; · Branding of the deployment including logos and welcome message. ; ; Users can hide individual sources from their default searches to further customise search results to their needs.

Scaling

• Independence of resources: GCP cloud provider enables easy scaling with increased demand without affecting level of services provided

Analytics

• Service usage metrics: Yes
• Metrics types: A wide range of operational use data is provided through the organisational dashboard.
• Reporting types:
  • Real-time dashboards
  • Reports on request

Resellers

• Supplier type: Not a reseller

Staff security

• Staff security clearance: Other security clearance
• Government security clearance: None

Asset protection

• Knowledge of data storage and processing locations: Yes
• Data storage and processing locations:
  • United Kingdom
  • European Economic Area (EEA)
• User control over data storage and processing locations: No
• Datacentre security standards: Complies with a recognised standard (for example CSA CCM version 3.0)
• Penetration testing frequency: At least once a year
• Penetration testing approach: ‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
• Protecting data at rest:
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
• Data sanitisation process: Yes
• Data sanitisation type: Deleted data can’t be directly accessed
• Equipment disposal approach: In-house destruction process

Data importing and exporting

• Data export approach: Users can export their data in XML format
• Data export formats: CSV
• Data import formats: Other
• Other data import formats:
  • Google Drive Storage
  • PDF
  • HTML
  • MS Word documents

Data-in-transit protection

• Data protection between buyer and supplier networks:
  • Private network or public sector network
  • TLS (version 1.2 or above)
• Data protection within supplier network: TLS (version 1.2 or above)

Availability and resilience

• Guaranteed availability: Please see attached terms and conditions.
• Approach to resilience: Available upon request. We are compliant with the Data Security and Protection toolkit.
• Outage reporting: Email alerts via auto-monitoring services and through our social media channels

Identity and authentication

• User authentication needed: Yes
• User authentication: Username or password
• Access restrictions in management interfaces and support channels: Admin access is via a username and strong password. The search interface does not require any access restrictions, however, a log in can be added, which is required before access is made.
• Access restriction testing frequency: At least once a year
• Management access authentication:
  • 2-factor authentication
  • Username or password

Audit information for users

• Access to user activity audit information: Users have access to real-time audit information
• How long user audit data is stored for: User-defined
• Access to supplier activity audit information: Users contact the support team to get audit information
• How long supplier audit data is stored for: User-defined
• How long system logs are stored for: User-defined

Standards and certifications

• ISO/IEC 27001 certification: No
• ISO 28000:2007 certification: No
• CSA STAR certification: No
• PCI certification: No
• Cyber essentials: Yes
• Cyber essentials plus: Yes
• Other security certifications: Yes
• Any other security certifications: NHS Data Security and Protection Toolkit

Security governance

• Named board-level person responsible for service security: Yes
• Security governance certified: Yes
• Security governance standards: Other
• Other security governance standards: Cyber Essentials Plus certification. Data Security and Protection Toolkit certification. Our data centre (Google Cloud) is certified to ISO 27001. Whilst not formally certified to ISO 27001, we have policy and processes in place that align with ISO 27001, expect audit and certification in upcoming year.
• Information security policies and processes: We comply with NHS Digital Data Security and Protection Toolkit, and have a range of policies and procedures to support the security of our system. Available on request.

Operational security

• Configuration and change management standard: Supplier-defined controls
• Configuration and change management approach: All changes follow a controlled release program and are subject to QA and Testing in multiple similar environments before being promoted to the live production environment. Code changes are peer reviewed and validated.; ; Available on request. Compliant with Data Security and Protection Toolkit.
• Vulnerability management type: Supplier-defined controls
• Vulnerability management approach: Available on request. Compliant with and detailed in Data Security and Protection Toolkit. Cyber Essentials certified.
• Protective monitoring type: Supplier-defined controls
• Protective monitoring approach: We use internal and external systems to monitor uptime health and vulnerability of key system components. Combined results are displayed within our internal communications tools. Live monitoring of our systems allows for rapid notification with immediate response in the event of system vulnerability. We use cloud-native tooling including Sentry and StatusCake.; ; Additional details available on request. Compliant with Data Security and Protection Toolkit. Cyber Essentials certified.
• Incident management type: Supplier-defined controls
• Incident management approach: If an incident occurs we have an internal incident management procedure to follow. Available upon request.

Secure development

• Approach to secure software development best practice: Supplier-defined process

Public sector networks

• Connection to public sector networks: No

Social Value

• Social Value:

  Social Value

  • Fighting climate change
  • Covid-19 recovery
  • Wellbeing

  Fighting climate change

  Medwise AI Ltd is reducing its carbon footprint to a minimum by enabling fully remote workplace.

  Covid-19 recovery

  Medwise AI supports the healthcare workforce by improving productivity and reducing cognitive load.

  Wellbeing

  Medwise AI supports the healthcare workforce by improving their productivity and reducing burn-out.

Pricing

• Price: £5,000 to £122,500 a licence
• Discount for educational organisations: Yes
• Free trial available: Yes
• Description of free trial: Access to free version without customisation and integration available
• Link to free trial: https://medwise.ai

Service documents

• Pricing document

  PDF

• Service definition document

  PDF

• Terms and conditions

  PDF

Request an accessible format

If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at hello@medwise.ai. Tell them what format you need. It will help if you say what assistive technology you use.