Featured post
DTAC 2.0: Key Changes and What Healthtech Teams Need to Know
Key changes to the updated DTAC in February 2026, including the changes to the DTAC form and updated Scope
LearnLatest news
Blog
Useful articles to help with your compliance journey
DTAC
NHS Compliance
DTAC 2.0: Key Changes and What Healthtech Teams Need to Know
Key changes to the updated DTAC in February 2026, including the changes to the DTAC form and updated Scope
Cordi Mahony•Feb 26, 2026
DTAC 2.0: Key Changes and What Healthtech Teams Need to Know
DCB0129
Clinical Safety
Clinical Risk Management
DCB0129 Clinical Risk Management: An Introduction to Clinical Safety for Healthtech Companies
DCB0129 explained: the clinical risk management steps, the CSO and the key deliverable documents (Hazard Log, Safety Case) you need for NHS deployment
Dr. Rosie Taylor•Feb 19, 2026
DCB0129 Clinical Risk Management: An Introduction to Clinical Safety for Healthtech Companies
ISO 27001
Information Security
Not All ISO 27001 Certificates are Equal: UKAS vs Non UKAS Accreditation
Not all ISO 27001 certificates carry the same weight. In this blog, we break down the differences between UKAS-accredited and non-accredited certification, explain why accreditation matters for credibility and enterprise deals, and share practical insights from Assuric’s own journey to achieving ISO 27001 with accredited auditors.
Cordi Mahony•Feb 11, 2026
Not All ISO 27001 Certificates are Equal: UKAS vs Non UKAS Accreditation
SOC 2
Information Security
SOC 2 for Healthtech: Unlocking Opportunities in the US
As UK healthtechs expand into the US and sell to enterprise customers, SOC 2 often becomes a key requirement. This guide explains what SOC 2 is, who it’s for, the difference between Type I and Type II, and how it helps unlock enterprise deals.
Cordi Mahony•Feb 04, 2026
SOC 2 for Healthtech: Unlocking Opportunities in the US
Product Overview
ISO 27001
Startup Compliance
How Assuric uses Assuric to Assure Assuric
See how we use the Assuric product to manage internal compliance - as a tech company and NHS supplier. Learnings from our own ISO 27001 certification process including Product overview.
Matt Jennings•Jan 26, 2026
How Assuric uses Assuric to Assure Assuric
ISO 27001
Cyber Security
Information Governance
ISO 27001 Explained: A Guide for Healthtech Startups & Scale-Ups
ISO 27001 for Healthtech: What It Is, Who Needs It, and What Certification Involves
Cordi Mahony•Jan 16, 2026
ISO 27001 Explained: A Guide for Healthtech Startups & Scale-Ups
NHS DTAC
NHS Compliance
DCB 0129
What Is DTAC? A Guide to the NHS Digital Technology Assessment Criteria
A practical overview of NHS DTAC, breaking down the requirements, compliance process, and what digital health innovators need to know before selling into the NHS.
Cordi Mahony•Dec 15, 2025
What Is DTAC? A Guide to the NHS Digital Technology Assessment Criteria
GDPR
Data Protection
DSPT
Data Protection Essentials for Health Tech Innovators
A practical guide to Data Protection compliance for UK health tech startups - simplify data protection, and scale with confidence.
Cordi Mahony•Nov 19, 2025
Data Protection Essentials for Health Tech Innovators
DCB0160
Digital clinical safety (DCB0160) collaboration in action - A regional case study
Our approach and findings after regional risk assessment and piloting of a novel AI triage system in primary care
Assuric•Nov 01, 2025
Digital clinical safety (DCB0160) collaboration in action - A regional case study
DSPT
NHS
DSPT v8 2025 updates - What’s changed and how Assuric can help you stay compliant
An overview of key changes to the 2025 DSPT and how Assuric can simplify the journey to compliance.
Assuric•Sep 04, 2025
DSPT v8 2025 updates - What’s changed and how Assuric can help you stay compliant
GDPR
Consent and AI Medical Scribes - Is It Required?
Part 1 of 4 of a series on AI scribes
Dr. Paul Jewell•Feb 19, 2025
Consent and AI Medical Scribes - Is It Required?
GDPR
Why data sharing matters under GDPR - accountability and fines
If you share data with a third party, you can still be held accountable and fined. What can you do to minimise the risks?
Assuric•Sep 12, 2024
Why data sharing matters under GDPR - accountability and fines
DSPT
The NHS DSPT update: What Digital Health companies need to know about CAF alignment
The NHS DSPT is undergoing a significant update in version 7, aligning with the National Cyber Security Centre's (NCSC) Cyber Assessment Framework
Assuric•Sep 04, 2024
The NHS DSPT update: What Digital Health companies need to know about CAF alignment
DSPT
Why are cyber attacks are so common in the health sector?
Why data breaches occur so frequently in the health sector
Assuric•Jul 24, 2024
Why are cyber attacks are so common in the health sector?
GDPR Compliance
NHS DSPT
GDPR
Data Privacy
Documenting your Data Processing Activities
A practical guide to documenting your data processing activities for GDPR Article 30 and NHS DSPT
Assuric•Jul 15, 2024
Documenting your Data Processing Activities
DSPT
GDPR
How to create a Record of Processing Activities (ROPA)
Learn how to create and maintain a Record of Processing Activities (ROPA) to meet GDPR and NHS DSPT compliance. Includes practical steps, lawful basis guidance, and a free ROPA template for digital health companies.
Assuric•Jul 15, 2024
How to create a Record of Processing Activities (ROPA)
DSPT
GDPR
How to create an Information Asset Register (IAR)
Step-by-step guide to creating an Information Asset Register for GDPR and the NHS Digital Security Protection Toolkit (DSPT)
Assuric•Jul 15, 2024
How to create an Information Asset Register (IAR)
DSPT
GDPR
Privacy notices - GDPR guide for digital health companies
Step-by-step guide to creating a Privacy Notice for GDPR and the NHS Digital Security Protection Toolkit (DSPT)
Assuric•Jul 15, 2024
Privacy notices - GDPR guide for digital health companiesCan’t find what you’re looking for?
We’re always keen to help - do get in touch with any questions!
Make your life easier
and talk to us to simplify compliance
Goodbye manual processes, hello automation. Let Assuric manage compliance and security, so you can focus on growth.
