EMIS Ltd

Unscheduled Care Business Intelligence Accelerator

The Accelerator comprises a suite of over 20 reports and 5 dashboards as standard, alongside other pre-built service metrics. Based on the Microsoft platform means that the solution lives within a MS SharePoint portal environment supporting rich business and clinical collaboration through use of SQL server OLAP cubes.

Features

  • Microsoft SharePoint Portal environment
  • Connect to any clinical or data source

Benefits

  • Understand quality and financial KPI's instantly
  • Identify drivers which will improve productivity and service delivery
  • Understand patterns in patient flow
  • We can implement the solution in less than a month
  • Can implement an enterprise warehouse solution in 3 months
  • Prove quality and efficiency and highlight good practice

Pricing

£3000 to £5000 per unit per year

Service documents

G-Cloud 9

982488107001295

EMIS Ltd

Contracts dept

0113 380 3000

bids@emishealth.com

Service scope

Service scope
Software add-on or extension Yes, but can also be used as a standalone service
What software services is the service an extension to Clinical software installed
Cloud deployment model Private cloud
Service constraints None
System requirements Microsoft SQL 2008 R2 and above

User support

User support
Email or online ticketing support Email or online ticketing
Support response times As per SLA agreement
User can manage status and priority of support tickets Yes
Online ticketing support accessibility None or don’t know
Phone support Yes
Phone support availability 9 to 5 (UK time), Monday to Friday
Web chat support No
Onsite support Yes, at extra cost
Support levels SLA's are individually agreed with clients
Support available to third parties Yes

Onboarding and offboarding

Onboarding and offboarding
Getting started 2 days on-site training
Service documentation Yes
Documentation formats PDF
End-of-contract data extraction A full extract service is provided
End-of-contract process The customer has an option to renew and if not required we provide a full extract of their data.

Using the service

Using the service
Web browser interface Yes
Supported browsers
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari 9+
  • Opera
Application to install No
Designed for use on mobile devices Yes
Differences between the mobile and desktop service Automatically scaled for screen size, some limitations do apply
Accessibility standards None or don’t know
Description of accessibility SSRS Reports are accessed over HTTPS via Internet Explorer (or other compatible browser) and rendered in HTML5. The AccessibleTablix item can be added to enhance accessibility but lacks a few items to fully meet WCAG standards.
Access to the Analysis Services OLAP cubes is usually provided using Excel as a client.
Accessibility testing None
API Yes
What users can and can't do using the API SSRS has a Web Service API. Users can create their own reports and dashboards or run pre-built, parameter-based reports and dashboards.
API documentation Yes
API documentation formats Other
API sandbox or test environment Yes
Customisation available Yes
Description of customisation The service is delivered to provide self service reporting and analytics

Scaling

Scaling
Independence of resources All reporting is done via the report server so that users are not impacted by performance issues on the application server.
SSRS is scalable such that multiple SSRS web servers could be added if required and we have the ability to scale the number of DW Servers we have at any time, moving organisation/clients around depending on demand.

Analytics

Analytics
Service usage metrics Yes
Metrics types A suite of reports dashboards as standard, alongside other pre-built service metrics, including attendances, referrals, admissions, discharges, LOS, waiting times etc.
Reporting types Regular reports

Resellers

Resellers
Supplier type Not a reseller

Staff security

Staff security
Staff security clearance Conforms to BS7858:2012
Government security clearance Up to Security Clearance (SC)

Asset protection

Asset protection
Knowledge of data storage and processing locations Yes
Data storage and processing locations United Kingdom
User control over data storage and processing locations Yes
Datacentre security standards Complies with a recognised standard (for example CSA CCM version 3.0)
Penetration testing frequency At least every 6 months
Penetration testing approach In-house
Protecting data at rest Physical access control, complying with another standard
Data sanitisation process Yes
Data sanitisation type Explicit overwriting of storage before reallocation
Equipment disposal approach Complying with a recognised standard, for example CSA CCM v.30, CAS (Sanitisation) or ISO/IEC 27001

Data importing and exporting

Data importing and exporting
Data export approach Customers can export their data in any way applicable to Microsoft SQL server
Data export formats
  • CSV
  • ODF
Data import formats
  • CSV
  • ODF

Data-in-transit protection

Data-in-transit protection
Data protection between buyer and supplier networks Private network or public sector network
Data protection within supplier network IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience
Guaranteed availability 99.95%
Approach to resilience None of the reporting data is the primary data. If the service fails completely we are able to rebuild from the Source System.
Depending on infrastructure and SLAs we provide failover/business continuity services via secondary data centres
Resilience and data persistence is handled by the source applications.
Outage reporting Planned and agreed outages are made via the EMIS Health Operational Change Management process.

Any unplanned outages are reported directly to the customer.

Identity and authentication

Identity and authentication
User authentication needed Yes
User authentication
  • 2-factor authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password
Access restrictions in management interfaces and support channels Identity and Access Control is provided by Active Directory
Admin access is managed by the separate domains per service.
Access restriction testing frequency At least once a year
Management access authentication
  • Public key authentication (including by TLS client certificate)
  • Username or password

Audit information for users

Audit information for users
Access to user activity audit information Users have access to real-time audit information
How long user audit data is stored for At least 12 months
Access to supplier activity audit information Users have access to real-time audit information
How long supplier audit data is stored for At least 12 months
How long system logs are stored for At least 12 months

Standards and certifications

Standards and certifications
ISO/IEC 27001 certification Yes
Who accredited the ISO/IEC 27001 BSI
ISO/IEC 27001 accreditation date 10/09/2016
What the ISO/IEC 27001 doesn’t cover N/A
ISO 28000:2007 certification No
CSA STAR certification No
PCI certification No
Other security accreditations Yes
Any other security accreditations IG Toolkit

Security governance

Security governance
Named board-level person responsible for service security Yes
Security governance accreditation Yes
Security governance standards ISO/IEC 27001
Information security policies and processes Compliance with an accreditation to ISO 27001 audited twice yearly by BSI

Operational security

Operational security
Configuration and change management standard Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Configuration and change management approach Processes comply with ISO 20000 and follow ITIL v3 framework
Vulnerability management type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Vulnerability management approach Compliance with an accreditation to ISO 27001 audited twice yearly by BSI
Protective monitoring type Conforms to a recognised standard, for example CSA CCM v3.0 or SSAE-16 / ISAE 3402
Protective monitoring approach Compliance with an accreditation to ISO 27001 audited twice yearly by BSI
Incident management type Conforms to a recognised standard, for example, CSA CCM v3.0 or ISO/IEC 27035:2011 or SSAE-16 / ISAE 3402
Incident management approach Processes comply with ISO 20000 and follow ITIL v3 framework

Secure development

Secure development
Approach to secure software development best practice Independent review of processes (for example CESG CPA Build Standard, ISO/IEC 27034, ISO/IEC 27001 or CSA CCM v3.0)

Public sector networks

Public sector networks
Connection to public sector networks Yes
Connected networks
  • Public Services Network (PSN)
  • New NHS Network (N3)
  • Joint Academic Network (JANET)
  • Scottish Wide Area Network (SWAN)

Pricing

Pricing
Price £3000 to £5000 per unit per year
Discount for educational organisations No
Free trial available No

Documents

Documents
Pricing document View uploaded document
Service definition document View uploaded document
Terms and conditions document View uploaded document
Return to top ↑