Built UK-first, around NHS governance
A verification-first reference tool for radiology departments — designed around NHS information governance from day one, with every claim traceable to a primary source.
What is included
Why Trusts trial it
Radiology workloads are rising and the time available to consult primary sources at the desk is shrinking. MyRadAssistant gives the whole imaging team — radiologists, reporting radiographers, sonographers and radiology nurses — a verifiable, citation-anchored answer in seconds, not the twenty minutes it takes to navigate three guideline PDFs.
Compliance posture
| Requirement | Status |
|---|---|
| DSPT | Standards Met (ODS code U9L1B, 2025-26 v8, valid to 30 June 2027) |
| ICO Registration | ZB621582, active |
| MHRA medical device | Class I (Function 1), manufacturer registration confirmed 9 May 2026 (account 38102, GMDN 61087) |
| NHS SSO | Microsoft Entra ID OIDC, in active development |
| Cyber Essentials Plus | In progress (CSS Ltd) |
| DTAC v2.0 | Self-assessment in preparation; gated on DCB0129 clinical safety case and Cyber Essentials Plus completion |
| DCB0129 / DCB0160 | Clinical safety case in progress; two Clinical Safety Officers in training |
| DPIA | Drafted, see Information Governance pack |
| RCR iRefer pilot API | Pilot agreement secured (annual renewal) |
| NICE Syndication API | Application approved, awaiting API provision from NICE |
Data handling
- No patient-identifiable data is processed. Queries should not contain PHI; the tool is not designed for PHI and is not for use at the point of care on an individual patient.
- As a defence-in-depth safeguard, an on-server de-identification step can automatically detect and remove common patient identifiers (such as names, NHS numbers and contact details) from user input before it is sent to any model. This is a backstop against accidental entry — not a licence to enter PHI — and is not guaranteed to catch every identifier.
- UK and EEA-based hosting (Hetzner Germany, Qdrant Germany).
- Model API calls to Anthropic, OpenAI, Google, Cohere governed by Standard Contractual Clauses and the EU–US Data Privacy Framework where applicable.
- Web fallback queries to Exa and Tavily (both US) are similarly covered under the Data Privacy Framework. Web fallback is invoked only when the curated corpus does not contain a directly relevant source.
- Full detail in the Privacy policy and IAR/ROPA.
Pilots and procurement
We are currently inviting NHS Trusts to participate in structured pilots. Typical pilot covers six to twelve months, includes departmental analytics, and feeds back into product development. Procurement route: direct supplier contract via Trust framework.
Pilots, evaluation & procurement.
Email us with your Trust and rough department size and we'll set up an evaluation.