What are the pre-requisite compliance requirements for any potential suppliers of software at your NHS Trust? Kindly list the specific requirements for your Trust, which includes but is not limited to the following:
• Data governance policies that suppliers must prescribe to in order to secure tenders;
• Compliance requirements;
• ISO standards (i.e. ISO 2701);
• Frameworks;
Any other badges or accreditation required.
For context, this FOI request is in reference to non-clinical software (not a medical device) for senior management that aggregates data around patient flow (i.e. breaches, patient journeys, medical records, and resources consumed) across departments scraped from the ERP and other software.

Download response Compliance requirements for any potential suppliers of software. 191120