Quality and ISMS Policy

It is the policy of everyLIFE to maintain a quality system designed to meet the requirements of ISO 9001:2015 & ISO 27001:2017 (or any other standard in line with Annex SL Structure) in pursuit of its primary objectives, the purpose and the context of the organisation.

It is the policy of everyLIFE to:

  • strive to improve health and care by serving a growing number and breadth of customers, stakeholders and interested parties;
  • make the details of our policy known to all other interested parties including external parties where appropriate and determine the need for communication and by what methods relevant to the business management system. These include, but are not limited to, customers and clients and their requirements are documented in contracts, purchase orders and specifications etc;
  • comply with all legal requirements, codes of practice and all other requirements applicable to our activities;
  • commit to the reduction of hazards, prevention of injury, ill health and pollution;
  • provide all the resources of equipment, trained and competent staff and any other requirements to enable these objectives to be met;
  • ensure that all employees are made aware of their individual obligations in respect of this quality and information security policy;
  • maintain a management system that will achieve these objectives and seek continual improvement in the effectiveness and performance of our management system based on “risk”.

This quality and information security policy provides a framework for setting, monitoring, reviewing and achieving our objectives, programmes and targets.

Customer service is an essential part of the quality process and to ensure this is fulfilled, all employees receive training to ensure awareness and understanding of quality and information security and its impact on customer service.

To ensure the company maintains its awareness for continuous improvement, the business management system is regularly reviewed by the Senior Leadership Team (SLT) to ensure it remains appropriate and suitable to our business.  The Business Management System is subject to both internal and external annual audits.


Scope of the Policy (ISMS Only)

The scope of this policy relates to use of our cloud-based databases and our computer systems operated by the company either from its office in Farnborough or remotely, in pursuit of the company’s business of providing software to the health and care industry. It also relates where appropriate to external risk sources including functions which are outsourced. During the Covid pandemic employees worked from home. In July 2021 the company took the decision to operate a remote first policy where employees had the option to work from home or the office. The scope has therefore been extended to cover home working.

Click here to download a PDF of our Quality and ISMS Policy.