Digital & Innovation Services (D&I)

About Us

University Hospitals Plymouth NHS Trust’s Digital & Innovation department (D&I) provides ICT support and services to approximately 11,000 users across multiple organisations in the Plymouth Health Community, including:

Our service is designed using ITIL® methodologies and projects are managed in accordance with PRINCE2. D&I is a multi-discipline department consisting of over 150 employees with a range of teams.

UHP Digital Strategy 

UHP Digital Strategy.pdf [pdf] 3MB

The Trust does not yet have a trust wide EPR solution but is building a business case to obtain one.

Senior Management Team

  • Kath Potts – Chief Digital Officer and Chief Information Officer 

  • Mandy Stewart – Chief Business & Governance Officer

  • Katie Greenhill – Chief Support Officer and Head of Health Records

  • James Barrett - Chief Technology Officer

  • Simeon Brundell – Chief Clinical Information Officer (CCIO)

  • Sarah Dormor – Chief Nurse Information Officer (CNIO)

  • Sally King – Chief Clinical Support Services Information Officer (CCSSIO)

  • Mark Catolico – Chief Medical Information Officer (CMIO)

  • Matthew Julian – Chief Medical Information Officer (CMIO)

Contact us: plh-tr.dibusinessservices@nhs.net

 

Contract Details

The Purchasing activity for University Hospitals Plymouth NHS Trust, D&I department will be undertaken in accordance with UK law, regulations and directives, and the Trust's Standing Financial Instructions with purchase orders being based on achieving value for money.

UHP uses the central NHS tendering portal Atamis when carrying out its tendering activity. If you have not registered on this portal we strongly suggest you do to be able to receive tender notifications and to understand any future work.

 

NHSmail

For FOI requests regarding our email system, please be advised that the Trust uses NHSmail provided by NHS England. Please visit NHS England’s NHSmail page for further information about the service. Find out more about NHSmail

 

Cyber security and the Freedom of Information Act 2000

University Hospitals Plymouth NHS Trust has, following careful consideration of its experts, concluded that it will refuse requests that ask about cybercrime events or ask for information that assists criminals.

The Trust, following a public interest test considers such information exempt from supply in compliance with both:

  • section 31.-(1)(a) the Law enforcement exemption about the prevention and detection of crime

  • section 38-(1) (a) and (b) the Health and Safety exemption

Additionally, the Trust will neither confirm nor deny it holds information in compliance with sections 31.(3) and 38(2). This is because the revealing of facts enables others to utilise such data to identify weaknesses or strengths. Please refer to our rationale.

All future requests for similar information will be referred to this statement and considered exempt from supply in accordance with section 21.-(1) - information accessible by other means. This avoids the need for repeated responses that are substantially the same.

Our rationale

The Trust seeks to be an open organisation and makes much non personal information available to the public as possible, however it will not jeopardise the care of its patients and staff if making information public put them in danger. 

These exemptions apply because disclosing details of our security arrangements could prejudice the security and integrity of the Trust’s network and increase the risk of unauthorised access to information held by the Trust, much of which is confidential and sensitive.  The level of detail that would be released would enable external parties, who are not privy to the confidential aspects of Trust’s IT systems, knowledge of our security equipment and by association its integrated network security.  The Trust employs a range of security tools to mitigate the risk from different types of security threats.  Firewalls, Intruder Detection Devices Antivirus and other products form a mesh of security that protects the Plymouth NHS Network and data, the more of these vectors that are known, the weaker the security of the network protection.  There is a real risk that this knowledge could assist external parties in attempting a cyber-attack/hack into the Plymouth NHS Network.  The anticipated harm from this is a breach of data protection (failure to adequately protect information resulting in an unauthorised disclosure), data loss, and disruption to patient care through a loss of IT services.  The severity of harm is extensive with millions of patient records put at risk of unauthorised disclosure.

Systems failure endangers the physical or mental health and safety of patients and staff. Examples were frequently reported throughout the media following the WannaCry attack on various parts of the NHS and other organisations. The impact on the NHS has since been the subject of further investigations by both the press and educational institutions and their findings validate the approach we have taken.

Future requests

The Trust has consistently applied both section 31 and 38 to all “Right to know” requests received this financial year and will do so in the future.  The responses to such questions are displayed within the Trust’s disclosure log.  To avoid processing substantially similar requests, we will refer any new applicants to this standard explanation, when applicable. 

Those with legitimate business enquiries should contact the ICT’s Procurement team using this email address: plh-tr.dibusinessservices@nhs.net rather than make Freedom of Information Act requests. 

If you are unhappy with this approach, you have the right to complain.  This should be in writing to the address below or preferably by email to plh-tr.foi-requests@nhs.net.  We will then arrange for an independent appeal.

University Hospitals Plymouth NHS Trust
Freedom of Information Manager
Information Governance Team
Ground Floor, Brittany House
Brest Road
Plymouth
PL6 5YE

If you remain dissatisfied with the outcome of the appeal, then you have the right to appeal again to the Information Commissioner at:

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Visit the Information Commisioner's Office make a complaint page

Tel: 0303 123 1113

Updated 19/03/2025

Was this page helpful?

Was this page helpful?
Rating

Please answer the question below, this helps us to reduce the number of spam emails that we receive so that we can spend more time responding to genuine enquiries and feedback. Thank you.

*
Recruitment - Page Footer Image

Page footer image

Footer image