AirEmail is a Microsoft 365 add-in approved for integration in the NHSmail, Microsoft Outlook environment.

The Data Protection Impact Assessment (DPIA) is implemented.

AirEmail does not collect, store or transfer identifiable content of emails.

A Clinical Safety Officer oversees compliance with DCB0129.

Hazard Log implemented, all risks <2 with current controls.

Clinical Safety Case Report produced.

AirEmail testing adheres to industry standards, including OWASP WebSecurity Testing methodology (which encompasses OWASP top 10 and CWE 25),Open-Source Security Testing Methodology Manual (OSSTMM), and the Penetration Testing Execution Standard (PTES).

IntaForensics holds certification to ISO 9001:2015. ISO 14001.2015 and ISO/IEC270012022 and maintains an ISO/IEC 17025:2017 scope of accreditation as defined on the UKAS website, accredited organisation 7733.