At iGPR trust is not just a principle. It’s the foundation of everything we do.

From NHS GP practices to insurers and government departments, we are a trusted partner for secure, ethical and compliant digital medical reporting.

CERTIFICATIONS & FRAMEWORKS

Our platform is certified, accredited, and regularly audited by trusted UK standards and frameworks:

$craft\elements\db\ElementQuery$

We are fully compliant with the NHS DSP Toolkit, demonstrating our commitment to safeguarding patient data in line with NHS Digital standards.

$craft\elements\db\ElementQuery$

We are certified under ISO 27001, the internationally recognised standard for information security management. This ensures a structured and continuously improving approach to securing data.

$craft\elements\db\ElementQuery$

Our certification under Cyber Essentials and Cyber Essentials Plus confirms our resilience against cyber threats and our commitment to independent security testing.

$craft\elements\db\ElementQuery$

iGPR is an approved supplier on the NHS Supplier Framework, providing procurement confidence and governance assurance for GP practices and NHS commissioners.

Industry Vetted: Approved by the UK Insurance Sector

We undergo annual due diligence with the UK’s largest FCA regulated insurers, who represent the clear majority of the market.

These organisations are among the most heavily regulated in the UK. Governed by strict Financial Conduct Authority (FCA) rules, GDPR, anti-money laundering laws, and high standards for data governance.

Our platform and operations are reviewed annually for:

Data processing and compliance practices
Cybersecurity and threat response
Business continuity and operational resilience

This recognition makes iGPR the platform of choice across the financial services sector for secure access to medical records in life insurance, underwriting, claims, and more.

Organisations requesting medical evidence through iGPR

$craft\elements\db\ElementQuery$

iGPR is assessed under the CyberGRX framework as part of our regular customer assurance processes, providing assurance around thirdparty cyber risk.

$craft\elements\db\ElementQuery$

iGPR is accredited by FSQS, supporting our customers ongoing assurance requirements and demonstrating compliance with procurement and governance standards.

TRUSTED PARTNERSHIPS

Working hand in hand with healthcare and wellbeing experts to support every patient and employee

$craft\elements\db\ElementQuery$

We support GP Practices using EMIS Web through our longstanding partnership with Optum (formerly EMIS Health).

$craft\elements\db\ElementQuery$

We support GP Practices who use SystmOne through our longstanding partnership with TPP.

$craft\elements\db\ElementQuery$

We support GP Practices who use Vision through our longstanding partnership with Cegedim (formerly Vision Health).

$craft\elements\db\ElementQuery$

We are able to provide excellent health and wellbeing benefits to our employees through our partnership with BHSF.

Transparent Agreements

We believe in clarity and accountability when it comes to data. Our legal agreements are written to be easily understood and reflect how we operate:

End User Licence Agreement (EULA) for GP software users
Managed Service User Agreement for practices using our outsourced service

These agreements clearly communicate:

How we process data on behalf of GP practices (as Data Controllers)
How data is shared securely with requesters such as:
- Insurers
- Solicitors
- Government bodies (e.g. the British Military)

Data Handling & Security

We believe in clarity and accountability when it comes to data. Our legal agreements are written to be easily understood and reflect how we operate:

Role based access controls ensure only the right users can access data.
Full audit trails and access logs are built into our platform.

Data processing fully complies with UK GDPR and the Data Protection Act 2018.
We share a full Data Protection Impact Assessment (DPIA) with all GP practices that use our system.

Want to review our DPIA?

If you would like to review our DPIA please get in touch using our Contact form.

Contact

Government Level Trust

iGPR is not just an NHS recognised platform, it is also:

Used by central government bodies, including the British Armed Forces and national research initiatives.

Referenced at Secretary of State level as a secure, efficient, and compliant way to manage third party access to medical records.
Part of NHS England’s wider commitment to digital transformation and information governance.

Let’s Work Transparently

We are committed to maintaining the highest standards of integrity, clarity, and openness in how we operate. Because we know that trust is earned through action.

Need more information?

If you’re a patient, GP, insurer, solicitor, or public body and have questions about how we handle data, we’re here to help.

Contact