Compliance certifications and regulations

Forward complies with NHS Digital guidance on instant messengers, is IG toolkit (level 2 approved) and GDPR. We meet confidentiality guidelines outlined by the governing bodies of healthcare professionals assuring our users can discuss patients in an open but secure manner on our platform. Read on to see our policies and key features for more information.

Forward meets NHS England’s security standards set out in the recent white paper.

User Verification

Forward users must have an approved NHS, trust or hospital email address to access the application.

Protecting your Data

We use industry gold standards to encrypt your data, in transit and at rest. We undergo regular penetration testing to ensure we continue to meet best practices.

Storing Data Safely

Your user and patient data is stored securely in the UK, on Amazon Web Services London based servers. These servers meet ISO 27001 certification, ensuring your data is kept safe and backed up at all times.

Always Protected

Forward requires a separate PIN or TouchID to enter the application, to ensure that even if your phone is lost, your patient data remains secure.

Secure Image Sharing

Forward provides secure image sharing and editing, with no images stored on your device.

Meeting NHS Standards

Forward follows guidance from NHS Digital and is Information Governance Toolkit and CyberEssentials certified.

Any security questions or issues?

We’d be pleased to help answer them so do get in touch. Alternatively, our Help Center can add detail to a number of the most frequently asked queries. Help Center.

For my team

I’m a health professional interested in taking my team Forward.

Find out more

For my organisation

I’m evaluating new and secure ways for my organisation to communicate and collaborate.

Find out more