Infinity is used by healthcare professionals to improve clinical safety and efficiency by transforming the way teams communicate, collaborate and manage tasks.
Infinity will release time allowing the clinical team to spend more time caring for the patient.
- Care coordination & task management
- Patient lists & caseload management
- Team awareness & availability
- Instant messaging
- Activity logging
- Notifications, alerts & reminders
- Electronic medical record interoperability standards (HL7, FHIR, OpenEHR and more)
- Real-time dashboards
- Data & reports
- Security & information governance
- Reduce errors & improve outcomes
- Save staff & patient time
- Track & coordinate staff activity
- Improve patient flow
- Modernise processes & workflow
- Update & share data in realtime
- Digital transformation
- Improve information governance
- Document & archive activity
- Analyse performance and discover business insight
£0.99 to £150 per licence per month
- Education pricing available
- Free trial available
Infinity Health Ltd
+44 20 3637 5057
|Software add-on or extension||No|
|Cloud deployment model||Hybrid cloud|
|Email or online ticketing support||Email or online ticketing|
|Support response times||Within 1 business day|
|User can manage status and priority of support tickets||Yes|
|Online ticketing support accessibility||WCAG 2.1 AA or EN 301 549|
|Web chat support||Web chat|
|Web chat support availability||9 to 5 (UK time), Monday to Friday|
|Web chat support accessibility standard||WCAG 2.1 AA or EN 301 549|
|Web chat accessibility testing||
Automated UI testing
Browser accessibility testing
|Onsite support||Yes, at extra cost|
End user support - in-app tools and knowledge base
Technical support for enterprise customers
Training - £500/day
Technical Account Manager - £750/day
Cloud Support Engineer - £950/day
|Support available to third parties||No|
Onboarding and offboarding
A support knowledge base is provided for guidance on initial installation and configuration.
Enterprise users may be on-boarded via integration with 3rd-party systems, such as Patient Administration Systems (PAS), Electronic Health Record (EHR) or Single Sign-On (SSO).
Infinity Health can provide on-demand, on-site training to assist with configuration and set-up.
|End-of-contract data extraction||Infinity Health can produce a snapshot of customer data on the day the contract is terminated. This dataset will be delivered in CSV format and will include all records that were formally accessible by the customer.|
Included in contract price:
CSV record extract (by request)
Teams associated with the customer organisation will be deactivated.
All external data sharing will be deactivated if team administrators are based in the organisation who have selected to end their contract.
Patient data that is only accessed by the exiting organisation will be archived.
Data export for audit purposes.
Using the service
|Web browser interface||Yes|
|Application to install||Yes|
|Compatible operating systems||
|Designed for use on mobile devices||Yes|
|Differences between the mobile and desktop service||
The service is designed to behave in a similar way on all devices.
The service is optimised to display information appropriately, with respect to the device in use.
|What users can and can't do using the API||
Infinity supports legacy and emerging systems & standards, including, REST, HL7 v2 and FHIR. To facilitate 3rd-party integrations, Infinity provides a range of interfaces, including:
* Encounters API
Allow systems to consume data related to the interaction between a patient and healthcare providers for the purpose of providing healthcare services.
* Tasks API
Describes activities that can be performed and tracks the state of completion of each activity related to an encounter.
Other API resources can be tailored to support a broad range of technical and business requirements.
Infinity is also a member of INTEROPen, an action group to accelerate the development of open standards for interoperability in the health and social care sector.
|API documentation formats||
|API sandbox or test environment||Yes|
|Independence of resources||Monitor load times and scale resources to maintain system performance.|
|Service usage metrics||Yes|
Monitor system performance
|Reporting types||Reports on request|
|Supplier type||Not a reseller|
|Staff security clearance||Other security clearance|
|Government security clearance||None|
|Knowledge of data storage and processing locations||Yes|
|Data storage and processing locations||
|User control over data storage and processing locations||No|
|Datacentre security standards||Managed by a third party|
|Penetration testing frequency||At least once a year|
|Penetration testing approach||Another external penetration testing organisation|
|Protecting data at rest||
|Data sanitisation process||Yes|
|Data sanitisation type||Deleted data can’t be directly accessed|
|Equipment disposal approach||A third-party destruction service|
Data importing and exporting
|Data export approach||The Service supports the on-demand export of the current, active patient record list to CSV file.|
|Data export formats||CSV|
|Data import formats||CSV|
|Data protection between buyer and supplier networks||TLS (version 1.2 or above)|
|Data protection within supplier network||TLS (version 1.2 or above)|
Availability and resilience
|Guaranteed availability||Infinity Health Limited shall use commercially reasonable efforts to make the services available 24 hours a day, 7 days a week, except for: (a) planned downtime, or (b) any unavailability caused by circumstances beyond Infinity Health's reasonable control, including without limitation, acts of God, acts of government, floods, fires, earthquakes, civil unrest, acts of terror, strikes or other labor problems, Internet service provider failures or delays, or denial of service attacks.|
|Approach to resilience||Information available on request.|
Third party hosting partner sends alert to Infinity
Broadcast email message to users to check Infinity status page
Identity and authentication
|User authentication needed||Yes|
|User authentication||Username or password|
|Access restrictions in management interfaces and support channels||Infinity Health use a third party service to manage access to management interfaces and support channels. Access is restricted to a limited number of key authorised staff.|
|Access restriction testing frequency||At least once a year|
|Management access authentication||
Audit information for users
|Access to user activity audit information||Users have access to real-time audit information|
|How long user audit data is stored for||At least 12 months|
|Access to supplier activity audit information||Users contact the support team to get audit information|
|How long supplier audit data is stored for||At least 12 months|
|How long system logs are stored for||At least 12 months|
Standards and certifications
|ISO/IEC 27001 certification||Yes|
|Who accredited the ISO/IEC 27001||Alcumus ISOQAR|
|ISO/IEC 27001 accreditation date||19/02/2019|
|What the ISO/IEC 27001 doesn’t cover||Not applicable|
|ISO 28000:2007 certification||No|
|CSA STAR certification||No|
|Other security certifications||No|
|Named board-level person responsible for service security||Yes|
|Security governance certified||Yes|
|Security governance standards||ISO/IEC 27001|
|Information security policies and processes||
The company maintains a robust Information Security Management System and is ISO 27001 certified. Infinity Health maintains the following policies relating to information security:
Access Control Policy
Clear Desk and Screen Policy
Computer and Internet Use Policy
Data Protection Policy
Information Classification & Control Policy Policy
Information Security Policy
Laptop & Mobile Devices Policy
Media Handling & Disposal Policy
Password Management Policy
Patch Management Policy
Physical Security Policy
Secure Development Policy
Supplier Security Policy
Infinity Health follows the following procedures relating to information security:
Asset Management Procedure
Backup and Restore Procedure
Business Improvement Review Procedure
Corrective Action, Preventive Action, Non-Conformity & Continual Improvement Procedure
Document Control & Record Management Procedure Procedure
Information Security Communication Procedure
Information Security Incident Reporting Procedure
Information Security Risk Assessment & Management Procedure
|Configuration and change management standard||Supplier-defined controls|
|Configuration and change management approach||The company is ISO 27001 certified. This includes configuration and change management processes to ensure that all components of the service are tracked through their lifetime and that changes are assessed for potential security impact.|
|Vulnerability management type||Supplier-defined controls|
|Vulnerability management approach||
The company is ISO 27001 certified. This includes the assessment of potential threats to services and how potential threats are managed.
Infinity Health can require the installation of security patches by disabling the app remotely.
News of potential threats will be distributed by email. Notifications will also be made on the company web site.
|Protective monitoring type||Supplier-defined controls|
|Protective monitoring approach||
Infinity use a third party partner to provide protective monitoring facilities.
The platform is monitored 24×7 by comprehensive automated systems. In the event of any issue affecting the health and operation of the infrastructure, core systems, or tools, the operations team is notified and will respond immediately to diagnose and correct any issues.
Infinity will work with the third party expert to identify potential compromises when our own performance monitoring processes identify potential issues.
|Incident management type||Supplier-defined controls|
|Incident management approach||
Infinity Health has an in-house incident management process.
The support knowledge base advises on common events and new information is added when new events occur (if appropriate).
Users report incidents through the software support tools or support page. Incidents will be given an incident number that will be used as an identifier for further communication between the user and support team if appropriate.
|Approach to secure software development best practice||Supplier-defined process|
Public sector networks
|Connection to public sector networks||No|
|Price||£0.99 to £150 per licence per month|
|Discount for educational organisations||Yes|
|Free trial available||Yes|
|Description of free trial||Free 3 month trial per team.|