PASS Security Centre

We keep your care data super secure

PASS is built to help care providers deliver safe, compliant, and accountable care.

We combine secure infrastructure, strict access controls, and recognised industry standards so you can confidently manage sensitive care data and meet regulatory requirements.

Book free tour
Learn more
Untitled (Banners (Portrait)) (801 x 2110 mm)

NHS Assured. Trusted by 1,250+ care providers

Information and data

Security you'll never have to stress about

ISO-certified & NHS-assured

Protected to ISO 27001 and Cyber Essentials Plus standards, backed by secure AWS cloud infrastructure.

GDPR-compliant from the ground up

Data is encrypted, access is controlled, and every change is logged automatically.

Permissions that protect people

Staff only see what’s relevant to their role, keeping personal information private and safe.

Cyber-Essentials-Plus-Logo (1)
64c0dddc1050b28bb4cada8e_nhs-dsc-logo
NHS_Digital_logo.svg
uk-government-logo-keesing
FPC Gold logo - until 2026
HCA-2-1
ISO 9001 and ISO 27001 accreditation
CASPA
Contents

What is PASS?

PASS is a care management platform that brings together care planning, rostering, medication, and reporting in one place.

Care providers use PASS to manage their service digitally, replacing paper records with secure, real-time data that supports safer care and stronger compliance.

Cybersecurity and data protection

We take the security of your data seriously and apply both technical and organisational controls to protect it.

PASS is:

  • ISO 27001 certified, the global standard for information security management
  • ICO registered, meeting UK data protection requirements
  • Aligned with NHS data security expectations, with all staff completing Data Security Awareness Training

We also apply the following protections:

  • Role-based access control, so carers and managers only see what they need
  • Independent penetration testing at least annually by approved providers
  • Secure infrastructure with databases not publicly accessible
  • Hosting on Amazon Web Services (AWS), with enterprise-grade physical and network security
  • Data stored in UK data centres, with backup stored separately in Ireland

Resilience and backup:

  • Data backed up 5 times every 24 hours
  • Backups stored in a separate location
  • High availability infrastructure, so the system continues running even if part of it fails

Confidentiality

Confidentiality means only authorised people can access your data.

To protect this:

  • Data in transit is encrypted using secure HTTPS connections and SSL certificates
  • Data at rest is securely stored within our infrastructure
  • Sensitive data such as passwords is hashed, meaning it cannot be reversed or viewed by anyone

PASS uses the same level of encryption trusted by online banking systems.

AWS provides additional infrastructure security and is independently audited for security, availability, and confidentiality.

Integrity

Data integrity ensures information cannot be changed or accessed by the wrong people.

PASS uses strict access controls and permissions, so only authorised users can view or edit data based on their role. This helps protect against errors, misuse, and unauthorised changes.

Availability

PASS is designed to stay available when you need it.

We build for failure, so your service keeps running even if something goes wrong behind the scenes.

  • Infrastructure spans multiple secure data centres (availability zones)
  • Automatic failover ensures continuity if systems fail
  • Data is regularly backed up and stored separately
 

This means your team can continue delivering care without disruption.

Explore the platform

Care scheduling

Plan rotas fast and keep visits punctual

eMAR

Track medication safely with real-time updates

GP Connect

View GP records instantly inside PASS

All features

See everything PASS can help you do