Diona Services

Diona Mobility is a family of commercial off the shelf (COTS) enterprise solutions built specifically for the Health & Social Care markets, bringing together devices such as mobile phones and tablets with national, authorities and council's case management and eligibility systems. With a configurable framework to facilitate enterprise wide integration.


  • Mobile working for Health & Social Care agencies
  • Client upload of evidence and documentation via mobile devices
  • Client self service and interaction with agencies in real time
  • Health & Social Care worker visits/meetings with clients
  • Mobile worker child and adult protection investigations
  • Online and Offline support
  • True enterprise solution incorporating integration with systems of record
  • System of engagement
  • Backend and platform agnostic
  • Fully configurable solutions


  • Health & Social Care worker empowerment and productivity gains
  • Workers spend more time with clients, less time on administration
  • Remote access to case files and offline support
  • Digitisation of existing paper based processes
  • Client and resident real time interaction with agency
  • Conduct assessments and questionnaires with clients/residents in their homes
  • Data captured is synchronised with backend solutions, no rekeying required
  • Rapid capture of case notes and client data
  • Rules based assessment and forms framework
  • Flexible, scalable and data is secure at transit and rest


£0.032 per person per month

  • Free trial available

Service documents

G-Cloud 11



David Harwood

07563 926101


Service scope

Service scope
Software add-on or extension Yes, but can also be used as a standalone service
What software services is the service an extension to Case management, Enterprise Document management, Eligibility/Benefit systems, Health & Social Care systems and Patient management systems
Cloud deployment model
  • Public cloud
  • Private cloud
Service constraints None
System requirements
  • An MDM solution is optional
  • Diona does not supply the end user mobile devices

User support

User support
Email or online ticketing support Email or online ticketing
Support response times Severity 0 - Within 1 hour
Severity 1 - Within 4 hours
Severity 2 - Within 1 business day
Severity 3 - Within 5 business days
User can manage status and priority of support tickets Yes
Online ticketing support accessibility WCAG 2.1 AA or EN 301 549
Phone support Yes
Phone support availability 24 hours, 7 days a week
Web chat support No
Onsite support Onsite support
Support levels The Help Desk will provide a single point of contact for support of the Subscription 24/7.
Monitoring and restarting of the Instances as needed 24/7.
At the Customer’s request, assist in:
• Configuration of the application server
• Managing firewall settings
• Applying patches as requested

Database Administration services
Database backups:
• Scheduled backups of database server and configurations

Application migration services
At Customer’s request, assist in migrating Customer’s Application from one environment to another.

Up to specified number of “Defined Names” authorized to contact Diona for Subscription Services

Up to 5 Customer contact names

Unlimited Number of Calls

Telephone support within coverage hours

Secure access to Knowledge Base FTP site
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Diona ships a complete set of documentation to cover everything from how to use the solutions to the technical architecture. Diona also conducts onsite and offsite training for clients
Service documentation Yes
Documentation formats
  • HTML
  • ODF
  • PDF
End-of-contract data extraction Diona is a system of engagement. No data is stored on the mobility server. One a data connection exists any information captured is synchronised with the backend system of record
End-of-contract process Diona's SaaS costs include license rental and support. For configurations and customisations implementation costs will apply.

Using the service

Using the service
Web browser interface No
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service All Diona mobility solutions are designed to be mobile first
What users can and can't do using the API Diona provides a set of defined API's to allow clients expose functionality offered by the mobile solutions.
API documentation Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • ODF
  • PDF
  • Other
API sandbox or test environment Yes
Customisation available Yes
Description of customisation Diona offer configurable of the shelf solutions. Customisations to the applications will be considered where appropriate.


Independence of resources Diona ensures that it's solutions are deployed in a manner that will ensure all users experience responsiveness.


Service usage metrics Yes
Metrics types Google Firebase Analytics
Reporting types Real-time dashboards


Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Staff screening not performed
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations
  • United Kingdom
  • European Economic Area (EEA)
User control over data storage and processing locations Yes
Datacentre security standards Supplier-defined controls
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Physical access control, complying with another standard
  • Encryption of all physical media
Data sanitisation process No
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach Diona is a system of engagement. The data resides in the system of record.
Data export formats Other
Other data export formats Diona is a system of engagement
Data import formats Other
Other data import formats Direct integration with backend systems

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability Diona will use commercially reasonable efforts to make the Subscription available 24 hours a day, 7 days a week
Approach to resilience Hosting is typically provided by Microsoft
Outage reporting Email alerts

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • 2-factor authentication
  • Username or password
Access restrictions in management interfaces and support channels The integration logic dictates which users can access the system and the data they may view/edit.
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users contact the support team to get audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users contact the support team to get audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified No
Security governance approach We comply with ISO/IEC 27001. Diona Mobility solutions are engineered according to OWASP best practices for securing mobile applications. All communications between the Mobile Apps, Server and other solution components can be encrypted using SSL and TLS encryption technologies. Encoding and white list validations are used when managing user-supplied input in order to protect against input and injection style attacks.
Information security policies and processes Diona has Information Security Management policies which are based on ISO 27001 standards which we may share if requested.

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach JIRA is used to track changes in the software from requirements through to system delivery. Each requirement is accessed for any potential customer impact or security impact
Vulnerability management type Supplier-defined controls
Vulnerability management approach Vulnerability management is undertaken by a third party organisation.
Protective monitoring type Supplier-defined controls
Protective monitoring approach The hosting provider typically deploys monitoring tools and respond to any breaches.
Incident management type Supplier-defined controls
Incident management approach The Diona support system uses Zendesk for the reporting and management of incidents

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks No


Price £0.032 per person per month
Discount for educational organisations No
Free trial available Yes
Description of free trial Diona allows customers to trial the mobility solutions. A cost will apply, but just to cover the costs incurred by Diona and the rental of the software.

Service documents

pdf document: Pricing document pdf document: Skills Framework for the Information Age rate card pdf document: Terms and conditions
Service documents
Return to top ↑