Tiani Spirit Limited

Spirit Service

Tiani-Spirit delivers Integrating the Healthcare Enterprise (IHE) based services that enable Healthcare organisations to provide lower cost access to higher quality care. The SpiritEHR data exchange solution enables the sharing of citizen information between existing systems across the whole of public sector services, both within and across regional boundaries​

Features

  • Standardise, connect and exchange information between multiple healthcare systems
  • Orchestrate, process, transform and pseudonymise information for analytics purposes
  • Security services, that provide confidentiality, integrity, non-repudiation and availability
  • Management and exchange of Digital Imaging and Communications in Medicine
  • Provide bi-directional mobile access to healthcare information

Benefits

  • Securely exchange healthcare information
  • Easily interface and integrate health care and social care systems
  • Provide lower cost access to high quality care
  • Provide integrated health records for primary access and analytics
  • Facilitates Cross-Regional data exchange
  • Enables Cross-Community interoperability

Pricing

£25500 per instance per year

  • Education pricing available
  • Free trial available

Service documents

G-Cloud 11

783728887827560

Tiani Spirit Limited

Ian Press

07582929614

ian.press@tiani-spirit.com

Service scope

Service scope
Software add-on or extension No
Cloud deployment model
  • Public cloud
  • Private cloud
  • Community cloud
  • Hybrid cloud
Service constraints Tiani-Spirit services are provided as Java Enterprise Edition software deployed on WildFly or JBoss Enterprise Application Platform. The WildFly or JBoss Enterprise Application Platform is deployed on CentOS or Red Hat Enterprise Linux based virtual machines.
System requirements
  • CentOS or Red Hat Enterprise Linux
  • Any compatible hypervisor
  • Wildfly or JBoss Enterprise Application Platform

User support

User support
Email or online ticketing support Email or online ticketing
Support response times P1 = 1 Hour
P2/3/4 = 2 Hour
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support No
Web chat support No
Onsite support Onsite support
Support levels Tiani Spirit works with each Spirit Service customer, to define the specific service level required by the customer and the subsequent costs to provide the agreed service level. Service customers are allocated a technical account manager.
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started Tiani-Spirit provides onsite and web-based training and shares user documentation. Tiani-Spirit also provides access to a wiki for both partners and end-users.
Service documentation Yes
Documentation formats
  • HTML
  • PDF
End-of-contract data extraction All data is accessible via the integrated interface and may be exported to any user-defined data format.
End-of-contract process Access to the service is removed. All Service credentials allocated to the customer are revoked. The customer instance of the service will be archived and retained for a period of 3 months after contract end.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10
  • Internet Explorer 11
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install Yes
Compatible operating systems
  • IOS
  • Linux or Unix
  • MacOS
  • Windows
  • Other
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Tiani-Spirit's portal services may be accessed using mobile devices via a mobile web browser. Mobile users may also use the Tiani-Spirit iOS based application to provide bi-directional access to healthcare information.
Accessibility standards None or don’t know
Description of accessibility Through the Tiani Spirit Portal
Accessibility testing None
API Yes
What users can and can't do using the API The Tiani-Spirit solution facilitates data-sharing broadly via three mechanisms
- IHE Profiles - For systems that conform to the IHE profile interface and content specification
- Medical global standards - For systems that do not support any IHE profiles, however, do still support interfacing via globally agreed interface and content standards
- Tiani-Spirit API - For systems that cannot offer IHE or other recognised standards interface or content support Tiani-Spirit provides an API for integration options

The Tiani-Spirit solution includes flexible and configurable data forwarding, processing, pseudonymisation, transformation and query services for an integrated system.
API documentation Yes
API documentation formats
  • HTML
  • PDF
  • Other
API sandbox or test environment Yes
Customisation available Yes
Description of customisation Buyers can perform Tiani-Spirit integration via a supported mechanism and then deliver the integrated capability as part of the Buyer's product or solution.

Scaling

Scaling
Independence of resources Tiani-Spirit's architecture supports vertical - per virtual machine - scaling which enables specific services to provide a defined and tested level of support. Tiani-Spirit's architecture also supports horizontal - multiple virtual machine - scaling which enables specific services to be delivered from multiple load-balanced virtual machines.

Analytics

Analytics
Service usage metrics Yes
Metrics types Tiani-Spirit supports IHE Audit Trail and Node Authentication logging that records all transactions between any IHE Actor.

Tiani-Spirit provides Transaction logs that include timing and statics for every web-service transaction. Tiani-Spirit also supports log forwarding to a platform such as Elasticsearch so that analysis can be performed using tools such as Kibana.
Reporting types
  • API access
  • Real-time dashboards

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Managed by a third party
Penetration testing frequency At least once a year
Penetration testing approach Another external penetration testing organisation
Protecting data at rest
  • Encryption of all physical media
  • Other
Other data at rest protection approach Tiani-Spirit support IHE Document Encryption (DEN). Hosting providers that host Tiani-Spirit software support Physical access control, complying with CSA CCM v3.0, Physical access control, complying with SSAE-16 / ISAE 3402 and Physical access control, complying with other standards.
Data sanitisation process Yes
Data sanitisation type
  • Explicit overwriting of storage before reallocation
  • Deleted data can’t be directly accessed
Equipment disposal approach A third-party destruction service

Data importing and exporting

Data importing and exporting
Data export approach The Tiani-Spirit solution facilitates data-sharing broadly via three mechanisms
- IHE Profiles - For systems that conform to the IHE profile interface and content specification
- Medical global standards - For systems that do not support any IHE profiles, however, do still support interfacing via globally agreed interface and content standards
- Tiani-Spirit API - For systems that cannot offer IHE or other recognised standards interface or content support Tiani-Spirit provides an API for integration options

The Tiani-Spirit solution includes flexible and configurable data forwarding, processing, pseudonymisation, transformation and query services for an integrated system.
Data export formats
  • CSV
  • Other
Other data export formats
  • IHE XDM (content agnostic, supports XDS-MS, XPHR, XDS-SD, and XD*-LAB)
  • HL7 FHIR
  • HL7 CDA
Data import formats
  • CSV
  • Other
Other data import formats
  • HL7 Clinical Document Architecture
  • HL7 FHIR

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks
  • Private network or public sector network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway
Data protection within supplier network
  • TLS (version 1.2 or above)
  • IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability If Tiani fails to achieve a Service Level Target in a Service Measurement Period and then fails to achieve the same Service Level Target in a subsequent Service Measurement Period, the failure in the subsequent Service Measurement Period shall be a “Repeat Failure”. The Repeat Failure count shall increment by one (1) for each additional failure. Repeat Failures shall apply to Service Level Targets for Availability, Incident Resolution and Quality. Repeat Failures shall not apply to Service Level Targets for Provisioning. The Repeat Failure count shall be reset to zero (0) once there have been two (2) consecutive Service Measurement Periods in which the Service Level Target has been met. Service Credits are required to be paid in the event that the Achieved Service Level falls below the Service Level Target in a Service Measurement Period. The Service Credit (£) is calculated by Service Credit (£) = Service Credit (%) x Service Charge for the Service Measurement Period. 20. The Service Charge shall be the Charge for the Service Measurement Period.
Approach to resilience Tiani-Spirit's architecture supports vertical - per virtual machine - scaling which enables specific services to provide a defined and tested level of support. Tiani-Spirit's architecture also supports horizontal - multiple virtual machine - scaling which enables specific services to be delivered from multiple load-balanced virtual machines.
Outage reporting Via the hosting service provider's services. Via Tiani-Spirit email alerts.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • Public key authentication (including by TLS client certificate)
  • Identity federation with existing provider (for example Google Apps)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password
Access restrictions in management interfaces and support channels Tiani-Spirit supports the IHE Audit Trail and Node Authentication (ATNA) Integration Profile which establishes security measures, together with the Security Policy and Procedures, provide patient information confidentiality, data integrity and user accountability. SAML Tokens are used with TLS authenticated communication channels to enable authorised access to specific services. Tiani-Spirit delivers a Security Token Service (STS), which creates signed SAML assertions as per WS-Trust and JSON Web Tokens (depending on the service used).
Access restriction testing frequency At least every 6 months
Management access authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Limited access network (for example PSN)
  • Dedicated link (for example VPN)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for User-defined
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for User-defined
How long system logs are stored for User-defined

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification No
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security certifications No

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance certified Yes
Security governance standards Other
Other security governance standards NHS IG Toolkit
Information security policies and processes We comply and follow the NHS IG Toolkit policies and processes

Operational security

Operational security
Configuration and change management standard Supplier-defined controls
Configuration and change management approach Supplied by Hosting Provide
Vulnerability management type Supplier-defined controls
Vulnerability management approach Supplied by Hosting Provide
Protective monitoring type Supplier-defined controls
Protective monitoring approach Supplied by Hosting Provide
Incident management type Supplier-defined controls
Incident management approach Supplied by Hosting Provide

Secure development

Secure development
Approach to secure software development best practice Conforms to a recognised standard, but self-assessed

Public sector networks

Public sector networks
Connection to public sector networks Yes
Connected networks
  • Public Services Network (PSN)
  • NHS Network (N3)
  • Health and Social Care Network (HSCN)

Pricing

Pricing
Price £25500 per instance per year
Discount for educational organisations Yes
Free trial available Yes
Description of free trial Tiani provides a proof of concept phase in which one use case is provided at no licence cost in order to try and test the software. This is dependent upon non-live patient data being transferred and not being used in a clinical live environment.

Service documents

pdf document: Pricing document pdf document: Service definition document pdf document: Terms and conditions
Service documents
Return to top ↑