Forward meets NHS England’s security standards set out in the November 2018 white paper.
Forward users must have an approved NHS, trust or hospital email address to access the application.
Protecting your Data
We use industry gold standards to encrypt your data, in transit and at rest. We undergo regular penetration testing to ensure we continue to meet best practices.
Storing Data Safely
Your user and patient data is stored securely in the UK, on Amazon Web Services servers based in London. These servers meet ISO 27001 certification, ensuring your data is kept safe and backed up at all times. Data is never stored on a user’s personal device.
Forward requires a separate PIN or TouchID to enter the application, to ensure that even if your phone is lost, patient data remains secure.
Secure Image Sharing
Forward provides secure image sharing and editing, with no images stored on your device.
Meeting NHS Standards
Forward complies with the latest guidance from NHS England and NHS Digital, is certified by CyberEssentials, and meets all required security standards under the Data Security and Protection (DSP) Toolkit and GDPR.