Forward Clinical Limited, Acceptable Use Policy
Forward Clinical Ltd (“us”, “we”, or “our”) operates the Forward mobile application (the “Service”). Forward Clinical Limited is also known as Forward Health.
This Acceptable Use Policy outlines how the mobile application Forward should be used, and where user and company responsibilities lie.
Forward operates fully to NHS Digital and Department of Health national guidance on Healthcare IT Safety and best practice by ensuring all IT systems are assessed for compliance with Information Governance and Patient Safety regulations; users of Forward can find supplemental information on the responsibilities and policies underlying compliance by contacting the Forward team. The Forward team reserves the right to update this document as necessary.
This document relates to the use of Forward as a mobile application by all users, in hospital, private and community settings only within the United Kingdom. You may be made aware by your employer of further conditions surrounding your use of Forward.
General Information About Forward
Forward is a secure messaging and workflow mobile applications for healthcare professionals – this includes doctors, nurses and all Allied Health Professionals as well as support staff. Forward contains features to create and manage patient lists, organise and assign tasks, share photos and patient profiles with other healthcare professionals, and send instant messages.
Forward can be used by anyone with an NHSmail or Trust email address. It is primarily designed for clinical use but may also be useful to managers, secretaries and other authorised personnel. Forward may also be useful to those working in primary and social care, as well as private practice, in accordance with these professions’ own codes of conduct.
Forward reserves the right to remove a user, subject to unacceptable use, or operational requirement at any time.
Responsibilities of the User
- Forward must not be used to violate any laws or regulations of the United Kingdom or other countries. Any illegal activity will be reported to the employer and to the police
- Forward must not be used for unauthorised commercial gain including marketing, advertising and selling goods or services.
- Users of Forward must identify themselves accurately and as fully as is necessary to be correctly identified by other healthcare professionals. Users are responsible for maintaining their own identifiers including Profession, Grade, Hospital and Specialty as laid out in “Settings”.
- Users of Forward must not attempt to interfere with its software, dashboard or databases. Users have an implied responsibility to report any interference with Forward technology in order to protect patient data and promote patient safety
- Users must protect their own mobile device from theft or loss; in the event of theft or loss patient data should not be at risk, but the healthcare professional may be temporarily uncontactable, therefore it is the user’s responsibility to alert colleagues to this and to login on another device as soon as possible.
- Users must keep their Forward PIN confidential and secure, as well as the password to any email account linked to their Forward account. It is recommended (but not essential) that users also protect their device by touch or PIN identification. We recommend that users avoid the 10 most common PIN combinations and set a PIN that is different to that used to access the device.
- If Users opt to use Touch ID either for their device or for Forward, they must ensure that only they have access to the application i.e. no one else has a fingerprint enabled on their device.
- Communication via Forward is presumed to be of a professional nature and users should be aware that the content of messages relating to patients may on occasion be requested as part of investigations or audits, and may also be disclosed under the Freedom of Information Act 2000, the Data Protection Act 2018 (GDPR) and amendments and Freedom of Information (Scotland) Act 2002.
- Users are responsible, within reason, for seeking support from the Forward team when a technical or other issue arises. Failure to do so could technically result in a breakdown of communication which may put patients at risk. Forward are responsible for providing timely and effective support to users.
- It is assumed that users who are off duty will set their status to “unavailable”. Failure to do so may result in inappropriate attempts to contact an individual and may result in wasted time. Similarly, it is the individual’s responsibility to set their status to “available” or “on call” as indicated.
- Forward may be accessed from off site, depending on individual responsibilities and at the health professional’s discretion
GMC requirements for doctors and equivalent guidelines for other health professionals state that patient records should be clear, accurate and legible. Forward users are responsible for ensuring that patient demographics are correct to avoid misidentification of patients. Forward is not designed as a replacement for written or electronic patient records and any information recorded on the platform should therefore be duplicated in the official patient record.
Forward is designed for sharing photographs. Consent should always be sought and confirmed before taking a photograph of a patient, and the health professional should explain its purpose and with whom it will be shared. This consent, and the intended use of the photograph should be obtained and formally documented in line with the clinician’s local guidance. Users must note that the quality of photographs taken within Forward will depend upon the device, and will not necessarily meet required quality for diagnostic imaging or medical photography. Photographs taken within Forward should not be used as a substitute for these, but as an adjunct to clinical discussion only.
Where possible, we have tried to ensure that users will not breach guidelines around Information Governance by using Forward. These precautions include disabling some copy and screenshot functionalities, and storing data on secure cloud based servers. Users themselves have a responsibility to understand the need to not attempt to copy or store Patient Identifiable Data on their personal devices.
Information from Forward can be directly exchanged with other secure platforms designed to handle Patient Identifiable Information, e.g. NHSmail, but not with outside platforms without prior approval.
It is assumed that Forward users will have completed basic Information Governance training in accordance with mandatory training requirements in healthcare. It is the responsibility of the individual and of the organisation to ensure this is valid and up to date.
Forward has been designed for use in UK hospitals. As such, healthcare professionals who wish to use Forward in organisations outside the UK will need to consult local policies and laws.
Forward users are expected not to send any material by email that could cause distress or offence. Caldicott Guardian permission must be sought before sending explicit or very sensitive material, as with any other means of communication
It is the user’s responsibility to ensure that anyone with whom Patient Identifiable Data is exchanged has a valid reason to receive that data, as per Caldicott principles.
Clauses of Interest
Healthcare professionals are free to use Forward in any clinical context; this includes private practice and primary care.