Keeping Data Safe
Our commitment to governance and data protection standards
We have always put data protection and information security at the forefront of our business.
In our role as data processors of patient data, we make sure we strictly comply to the highest standards of NHS and GDPR governance.
Medi2data acts as a data processor working on behalf of data controllers (GP Surgeries and Third Party Clients).
We only process personal data with patient consent and in line with the controller’s instructions, unless it is required to do otherwise by law.
Our proprietary technology, eMR, used by GP surgeries and third-party clients, incorporates strict GDPR protocols and adheres to the highest data security standards
Our Governance Credentials
- NHS England GP IT Futures catalogue
- NHS Digital IM1 platform
- NHS Digital Data Security and Protection Toolkit - 8JQ49
- EMIS Health accredited partner
- Cegedim Healthcare accredited partner
- TPP SystmOne accredited partner
- Cyber Essentials Plus
- ISO/IEC 27001:2013 Certified - IS 744869
- ICO registered number ZA353121
- All data is fully encrypted and securely stored in data centres in the UK
