Supporting GPs on their paperless journey

Security and NHS Information Governance


Niche Health products are designed from inception to be fully compliant with best business and NHS security standards for the management of patient data. Niche Health is compliant with the NHS Information Governance (IG) Toolkit which ensures the safe handling and transmission of information for organisations working within the NHS environment.

As an IG Toolkit Level 3 accredited supplier (Organisation code 8J046) Niche Health is a trusted partner to the NHS for the management of all patient data using its products and services.

Niche Health has two products that are unique to the Primary Care market which bring significant benefits to General Practice. In delivering these solutions we work with trusted partners who hold the same values of service and security as we do.

As such Niche Health puts data security at the very heart of its service offerings insisting that our partners adhere to all security and NHS IG standards for data management, security and transfer.


iGPR - Intelligent GP Reporting

Our iGPR service offering enables third parties to securely request and receive patient medical reports electronically. The solution significantly enhances the security of this process for both the GP and the Third Party through full end to end AES256 NHS Compliant encryption of all data both at rest and in transmission.

iGPR maintains the highest security whilst significantly reducing the time General Practice take to produce such reports. The solution automatically redacts agreed sensitive information from the report in line with DPA requirements. All transmissions are audited, logged and verified to have been securely transmitted and received. Explicit patient consent drives the process and the solution is designed to ensure that the GP is the ‘gatekeeper’ and in full control of what information is provided to a requesting third party.

As part of designing and delivering the solution, iGPR has been fully penetration tested at both application and datacentre level by external security consultants.

In delivering the iGPR solution our N3 hosting is provided by the longest standing N3 datacentre provider in the UK, Piksel.

Piksel are a trusted supplier within both the NHS and general business community for the provision of highly secure, robust solutions. Piksel manage Niche Health’s iGPR infrastructure within the secure, private NHS N3 environment at a Level 4 datacentre ensuring all data is safe, secure, encrypted and is transmitted and received using the highest encryption and security protocols. Piksel are accredited to the following NHS extended and business as usual standards:


noteSpace

Our noteSpace product is IG compliant with all information processed within the NHS N3 environment (datacentre again hosted by Piksel). Patient records requested electronically via our noteSpace software are safely and securely delivered from our IG / BS 27001:2005 security accredited storage facility via the Box-It GPS Tracked Secure Carrier Fleet.

Where an electronic copy of a record is required, scan-on-demand forms part of the noteSpace solution. Electronic copies scanned at the storage facility are delivered via the noteSpace software through our secure NHS N3 datacentre direct to the General Practice.

In delivering the noteSpace solution our secure storage function is provided by Box-It who are a long established provider of Records management services to the both the NHS and Business community.

Box-it is accredited to the following NHS and business community security standards and hold the following ISO / IG accreditations along with a number of NHS contracts & framework agreements listed below:

As part of this the following is in place at all storage facilities around the UK (16 sites):