Versions Compared

Old Version 16

changes.mady.by.user Sarah Roberts

Saved on

compared with

New Version Current

changes.mady.by.user Sarah Roberts

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Page Properties
hiddentrue

Description

Info Sec at PKB, includes encryption, access control, logging, IDS and patching

Next review on

Review cycle:

Various, add date of next certification dueTask

Review cycle:

6 monthly

Patients Know Best is NHS Data Security and Protection Toolkit (DSPT) and Cyber Essentials Plus certified, ISO27001 compliant and follows the strict information handling requirements of these standards.

...

Expand
titleCloud host security

The Patients Know Best platform is is deployed as a multi-tenant, Software as a Service architecture is run on fault-tolerant servers at Google Cloud Platform (GCP).

In addition to managed services for Patient Knows Patients Know Best infrastructure, GCP provides physical security and environmental protection controls, including the use of secure perimeter defence systems, comprehensive camera coverage, biometric authentication, and a 24/7 guard staff. In addition, they enforce a strict access and security policy at data centres, ensuring all staff are trained to be security minded.

For more information see here

Expand
titleBusiness continuity and disaster recovery

Patients Know Best's Business Continuity and Disaster Recovery (BCDR) strategy is a proactive and comprehensive plan designed to ensure uninterrupted operations and data protectionresilience. Data security availability is a top priority, with encryption and access controls in placePKB architecture ensures data resilience and we maintain maintain full redundancy for critical services. Regular testing and validation are performed and , reviewed and approved annually.