We have worked with software companies since our inception. Our work has included marketing and market advice as well as architectural principles including issues of legitimate relationship, role-based access, consent and authentication controls. Much of our most recent work has focused on in-app controls, consenting and the use of SaaS, PaaS and other cloud-based models.
Typically, our projects have three components:
- Requirements for Health and Social Care Network (HSCN – previously N3) connectivity, and meeting the IG conditions.
- Organisation governance, based on the Information Governance Toolkit (IGT), but considering the implied objective of each requirement and addressing the gaps in IGT necessary for legislative compliance, including policies and procedures, operating procedures, etc.
- Product architecture, especially consent, but also security, platform considerations, APIs and data sharing.