Regulatory Compliance
Built for the UK regulatory environment
SENTRION™ is designed from the ground up to meet the standards expected by CQC inspectors, NHS information governance teams, and the ICO. Every feature reflects a legal or regulatory obligation.
CQC Regulation 12
Safe Care and Treatment — structured clinical decision support with full audit trails satisfies CQC's requirement for evidence-based risk management.
NHS DSP Toolkit
Data Security and Protection — SENTRION™ infrastructure and policies are aligned to the NHS DSP Toolkit mandatory assertions for social care providers.
UK GDPR / Data Protection Act 2018
All personal and special-category health data processed under a lawful basis. Data minimisation, purpose limitation and subject rights built into the platform.
ICO Registration
SENTRION Ltd is registered with the Information Commissioner's Office as a data controller. ICO registration number available on request.
Cyber Security Essentials
SENTRION™ infrastructure is aligned with NCSC Cyber Essentials controls — boundary firewalls, secure configuration, access control and malware protection.
ISO 27001 Alignment
SENTRION™ is implementing an Information Security Management System aligned to ISO 27001. Formal certification expected Q4 2026.
Data Processing Agreement required before storing patient data
Before entering any real resident information into SENTRION™, your organisation must sign a Data Processing Agreement with SENTRION Ltd. This is a legal requirement under UK GDPR Article 28. Please contact us to arrange this before go-live.
Request your DPAQuestions about compliance?
Our team can walk you through our security posture and provide documentation for your IG lead.