G-Cloud 11 services are suspended on Digital Marketplace

If you have an ongoing procurement on G-Cloud 11, you must complete it by 18 December 2020. Existing contracts with Tactuum are still valid.
Tactuum

Quris - Guidelines

Quris Guidelines allows organisations to create, manage and distribute guideline, policy and procedural resources to improve adherence, compliance and promote standards. Resources and tools can be accessed by users using web and mobile platforms, and are even available for use offline. Quris integrates with systems through open standards.

Features

  • Offline mobile access (for field/remote workers)
  • SMART on FHIR compliant
  • OpenEHR GDL compliant
  • AGREE II clinical guidelines support
  • HL7 CDS-Hooks (integration with EHR systems)
  • Single source of information, multiple channels of access (web/mobile)
  • COVID19 Covid-19 Coronavirus Resource Toolkits

Benefits

  • Fast, simple access to clinical resources
  • Reduce clinical risk
  • Reduce clinical variation / improve adherence
  • Point of care, at the bedside access to clinical resources

Pricing

£750 to £9,000 a licence a month

  • Free trial available

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at mbuchner@tactuum.com. Tell them what format you need. It will help if you say what assistive technology you use.

Framework

G-Cloud 11

Service ID

3 3 1 1 1 1 7 9 3 5 8 3 8 4 2

Contact

Tactuum Mark Buchner
Telephone: 07966687683
Email: mbuchner@tactuum.com

Service scope

Software add-on or extension
Yes, but can also be used as a standalone service
What software services is the service an extension to
Can be used and integrated into existing Intranet solutions where resources may already exist, e.g. Microsoft Sharepoint
Cloud deployment model
  • Public cloud
  • Private cloud
Service constraints
Can be hosted on-premise (if required) though default/typical configuration is Cloud (preferably Microsoft Azure).
System requirements
None

User support

Email or online ticketing support
Email or online ticketing
Support response times
Standard Service Level Agreement (SLA) covers Mon-Fri 09:00-17:00. Weekend and Out of Hours cover is possible at additional cost.
User can manage status and priority of support tickets
Yes
Online ticketing support accessibility
WCAG 2.1 AA or EN 301 549
Phone support
Yes
Phone support availability
9 to 5 (UK time), Monday to Friday
Web chat support
Web chat
Web chat support availability
24 hours, 7 days a week
Web chat support accessibility standard
WCAG 2.1 AA or EN 301 549
Web chat accessibility testing
Assistive technology testing conducted for popular screen readers: JAWS, NVDA
Onsite support
Yes, at extra cost
Support levels
Our Standard Service Level Agreement (SLA) provides support as follows:

1-Urgent Priority
Response Time: 1 hour of receipt.
Resolution Time: investigation and attempt to resolve within 8 hours.

2-High Priority
Response Time: 4 hours of receipt.
Resolution Time: investigation and attempt to resolve within 16 hours.

3-Normal Priority
Response Time: 8 hours of receipt.
Resolution Time: investigation and attempt to resolve within 48 hours.

4-Low Priority
Response Time: 16 hours of receipt.
Resolution Time: investigation and attempt to resolve within 72 days.

Standard SLA are costed into the license fees, so no additional cost.

Variants of the Standard SLA are possible.
Support available to third parties
Yes

Onboarding and offboarding

Getting started
We include as standard offsite training for set-up/configuration and the onsite and/or offsite training.
Service documentation
Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction
All data is owned by the client and extract is possible in XML/HTML format.
End-of-contract process
Extract of all content in XML/HTML format.

Using the service

Web browser interface
Yes
Supported browsers
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install
Yes
Compatible operating systems
  • Android
  • IOS
  • MacOS
  • Windows
Designed for use on mobile devices
Yes
Differences between the mobile and desktop service
All features and functions operate uniformly across web and mobile with a single exception; Mobile users can access resources/information offline.
Service interface
Yes
Description of service interface
The system's interface is via web browser and mobile app (iOS and Android).
Accessibility standards
WCAG 2.1 AA or EN 301 549
Accessibility testing
We have tested using a number of screen reader tools/technologies.
API
Yes
What users can and can't do using the API
There are secure APIs to support integration with EHR systems using FHIR, HL7 CDS-Hooks, InfoButtons, OpenEHR and SMART Apps.
API documentation
Yes
API documentation formats
  • Open API (also known as Swagger)
  • HTML
  • PDF
API sandbox or test environment
Yes
Customisation available
Yes
Description of customisation
Branding, look and feel are all customer specific.

Scaling

Independence of resources
Auto-scaling with support for scaling-up and out configurations.

Analytics

Service usage metrics
Yes
Metrics types
Use of resources and information within the system is tracked (both online and offline) and deep/rich analytics are available via online dashboard.
Reporting types
  • Real-time dashboards
  • Regular reports

Resellers

Supplier type
Not a reseller

Staff security

Staff security clearance
Other security clearance
Government security clearance
None

Asset protection

Knowledge of data storage and processing locations
Yes
Data storage and processing locations
United Kingdom
User control over data storage and processing locations
Yes
Datacentre security standards
Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency
At least once a year
Penetration testing approach
‘IT Health Check’ performed by a Tigerscheme qualified provider or a CREST-approved service provider
Protecting data at rest
  • Physical access control, complying with CSA CCM v3.0
  • Physical access control, complying with SSAE-16 / ISAE 3402
  • Encryption of all physical media
Data sanitisation process
No
Equipment disposal approach
A third-party destruction service

Data importing and exporting

Data export approach
There is a built-in XML/HTML export function.
Data export formats
Other
Other data export formats
  • XML
  • HTML
Data import formats
Other
Other data import formats
  • PDF
  • HTML
  • XML

Data-in-transit protection

Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Guaranteed availability
Standard SLA provides for 99.98% uptime and consultancy credits are provided if agreed SLA levels are not met.
Approach to resilience
Available on request.
Outage reporting
Email/SMS alerts via auto-monitoring services.

Identity and authentication

User authentication needed
No
Access restrictions in management interfaces and support channels
Integration with client Enterprise Authentication, e.g. Azure AD, SAML, OpenID, etc. Management access would then require username/password login.
Access restriction testing frequency
At least once a year
Management access authentication
Username or password

Audit information for users

Access to user activity audit information
Users have access to real-time audit information
How long user audit data is stored for
User-defined
Access to supplier activity audit information
Users have access to real-time audit information
How long supplier audit data is stored for
User-defined
How long system logs are stored for
User-defined

Standards and certifications

ISO/IEC 27001 certification
No
ISO 28000:2007 certification
No
CSA STAR certification
No
PCI certification
No
Other security certifications
Yes
Any other security certifications
Cyber Essentials

Security governance

Named board-level person responsible for service security
Yes
Security governance certified
No
Security governance approach
Whilst not formally certified, we have policy and processes in place that align with ISO 27001.
Information security policies and processes
We have an internal ISO 27001 aligned policy.

Operational security

Configuration and change management standard
Supplier-defined controls
Configuration and change management approach
We have a documented Configuration/Change Management process. Available on request.
Vulnerability management type
Supplier-defined controls
Vulnerability management approach
Our internal Infrastructure team have a documented policy/process. Available on request.
Protective monitoring type
Supplier-defined controls
Protective monitoring approach
Our internal Infrastructure Team have a document policy and processes. Available on request.
Incident management type
Supplier-defined controls
Incident management approach
Our internal Infrastructure Team have a document policy and processes. Available on request.

Secure development

Approach to secure software development best practice
Conforms to a recognised standard, but self-assessed

Public sector networks

Connection to public sector networks
No

Pricing

Price
£750 to £9,000 a licence a month
Discount for educational organisations
No
Free trial available
Yes
Description of free trial
We sometimes offer pilot options allowing clients to explore benefits and organizational fit.

Service documents

Request an accessible format
If you use assistive technology (such as a screen reader) and need versions of these documents in a more accessible format, email the supplier at mbuchner@tactuum.com. Tell them what format you need. It will help if you say what assistive technology you use.