Managing sensitive information
Security is central to RIVIAM, with all sensitive data encrypted to meet the high standards required for NHS operations
- Data management
Our platform and digital services are run from a secure data centre in England. All information is continuously encrypted using the AES256 algorithm.
Accredited and secure
We are proud to hold Cyber Essentials Certified Plus certification, demonstrating our commitment to protecting systems against cyber threats. This rigorous accreditation ensures our security measures meet industry best practices, safeguarding sensitive information from potential risks.
We have also standards exceeded by the NHS Digital Data Toolkit, aligning with the highest levels of NHS clinical and data protection measures. This reflects our dedication to maintaining the confidentiality, integrity and availability of patient data.
To ensure maximum security and compliance, all our data is securely stored and run from Amazon Web Services London Region, accredited to the UK Government’s standards. This guarantees that information remains protected under stringent UK data protection laws, providing our customers with peace of mind.
Trusted partner
By adhering to these industry-leading security frameworks, RIVIAM remains a trusted partner for healthcare organisations, ensuring data is managed with the highest levels of security and compliance.
Our services are available 24 hours a day, 7 days a week. We operate 99.95% SLA uptime.
Digital clinical safety
Our services strictly comply with the UK’s DCB0129 guidelines, meaning they pass extensive testing to ensure patient safety and data security. We can work with you to ensure the products are deployed safely and comply with the DCB0160 guidance. The clinical safety process is led by our Medical Director, Dr Shan Mantri. With us, you are choosing services that embody quality, safety and compliance.
Connected to the NHS Network
RIVIAM is connected to the NHS Network (HSCN) to ensure secure access for NHS customers.
Secure services
All our web and mobile services are designed to meet the highest security requirements. We regularly engage third-party organisations to conduct penetration testing, ensuring our services remain secure
Sensitive data is safe at all times and cannot be intercepted, with all information held in a secure AES256 database.
Two-factor access is enabled to meet NHS information governance requirements.
Consent management
Built-in consent features enable information sharing about individuals across health and care communities.
Subject access requests and auditing
RIVIAM provides auditing for every user action that updates or accesses a record about a person.