Pharmacy2U awarded Cyber Essentials Plus certification

Patient security and data protection remain at the heart of Pharmacy2U's business.

Pharmacy2U has completed an audit and achieved its annual Cyber Essentials Plus certification, certified by the IASME Consortium Ltd. Patients are at the heart of everything we do at Pharmacy2U, and patient security and privacy for both existing and future patients are dealt with as top priorities throughout the business. 

This independently verified self-assessment certification is a government-backed minimum standard scheme that protects against the most common cyber attacks. The Cyber Essentials Plus certification covers excellence in security controls and all information provided is verified by a qualified assessor. The assessment includes a rigorous analysis of several areas including:

  • Firewalls 

  • Secure Configuration 

  • Device Locking

  • Security Update Management 

  • Malware Protection 

Pharmacy2U’s data security and tech teams have been working in collaboration to ensure all elements are conducted with high standards and all the necessary defences are in place. This new accreditation contributes to making Pharmacy2U both a safe place to work and also a trusted provider of accessible healthcare services for our patients.

"We firmly believe that accreditations and certifications go far beyond mere tick-box exercises; they should never serve as a comfort blanket that gives us a false sense of security. Instead, achieving and renewing our Cyber Essentials Plus accreditation serves as a moment for introspection and re-evaluation. It provides us with an invaluable opportunity to challenge our assumptions, embrace external perspectives, and critically assess our practices. This annual milestone is not just about meeting standards—it's about holding ourselves accountable to the highest level of vigilance and excellence in privacy and cyber security. It reinforces our unwavering commitment to safeguarding our patients' data with the highest integrity and diligence.

Lars Kramm | Head of Privacy & Data Protection Officer