As part of an initial pilot, eRedbook has been tested and approved by NHS Digital.
eRedbook is ISB0129 compliant. ISB0129 is an information standard created by NHS Digital to help suppliers evidence the clinical safety of their products.
eRedbook has an appointed Clinical Safety Officer who assesses clinical risk within eRedbook, and maintains ISB0129 compliance.
Health guidance in eRedbook from NHS.uk is updated every six months. Each article in eRedbook shows the source and the date the content was last reviewed.
eRedbook data is stored in a Microsoft Azure Cosmos database. You can read more about the security of Microsoft Azure here. All personal data is secured at rest and in transit, including between the web browser, web server and database, using encryption.
eRedbook is fully compliant with NHS Digital's Supplier Conformance Assessment List (SCAL) process.
As a developer, Sitekit has officially adopted Microsoft's Secure Development Lifecycle and integrated it into Agile development methods. Sitekit Applications has robust vulnerability management processes and continually patches platforms. Sitekit cooperates with penetration tests independently commissioned by clients. Security processes are undergoing continual improvement, and Sitekit Applications recently commissioned a gap analysis by an independent security auditor.
Sitekit has maintained NHS Digital's Data Security and Protection Toolkit Level 2 since version 9 (2011/12) through establishing security policies, procedures and records aligned with ISO27001. ISO27001 is an information security standard. Sitekit, the creator of the eRedbook, is fully accredited to this standard.
Sitekit has a dedicated support team, you can contact them through the support website.