Date: Thu, 28 Mar 2024 18:49:06 +0000 (UTC) Message-ID: <2061388547.57.1711651746123@78419e32d020> Subject: Exported From Confluence MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_Part_56_405987256.1711651746123" ------=_Part_56_405987256.1711651746123 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Content-Location: file:///C:/exported.html
Non-functional requirements describe how the Solution works, not wh= at the Solution should do, and serve as constraints or restrictions on the = design of the Solution. The following non-functional questions are to enabl= e the Authority to assess the risk associated with the Compliance= Assessment of the Solution against the overarching Service Management, Inf= ormation Governance, Security, Testing, and Business Continuity and Disaste= r Recovery Standards. Supplier=E2=80=99s answers will also demonstrate they= understand the non-functional landscape of the market they are selling int= o.
The non-functional questions (NFQs) model illustrated within Figure= A attempts to show the relationships between the Supplier Solution and the= non-functional requirements (NFRs) required to meet the Overarching S= tandards, provide appropriate levels of service and, where relevant, satisf= y the required service SLAs.
Suppliers are responsible for ensuring the non-functional elements of th= eir Solutions are capable of meeting any defined service levels for specifi= c Capabilities provided, as well as any other NFRs specified by the Authori= ty across other Standards.
Suppliers must provide an appropriate answer to the non-functional quest= ions - the level of information and evidence required in the answer will de= pend on the Capabilities and scale of deployment of the Supplier=E2=80=99s = Solution and this will be determined and specified in the guidance provided= as part of the Capability Mapping and Standards Compliance Onboarding proc= ess.
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-U-3 |
Supported browser versions |
Which browsers are supported and what are the minimum and recommended ve= rsions? How do you approach the deprecation and uplift of browser versions? <= /td> |
Provide a list of the browser names and versions that the Solution suppo= rts (including your lifecycle/deprecation support approach). For deprecation/upgrade, provide details of how the end user is made awa= re. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-U-6 |
UI Standards |
What user interface standards does the Solution meet? Are you follo= wing ISO 9241-210:2010 = ;- the =E2=80=98six principles for human centred design'? |
Provide declaration and any supporting documented evidence and rationale= . Provide details of what was considered while designing the UI. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
|
GP-NFQ-U-7 |
Supported devices |
What devices are supported by the Solution that can be used and accessed= by end users? |
Provide type of devices supported, compatible with the Solution (includi= ng how these facilitate security/secure access in line with the Authority= =E2=80=99s authentication/authorisation policies) and any supporting docume= nted evidence and rationale. |
Demonstrate that the Solution is securely accessed and used by end users= on supported devices through authentication and authorisation mechanisms i= n line with NHS Digital policies. |
|
GP-NFQ-U-8 |
Client Access Mechanism (Accessibility) |
Describe how the Solution is accessed by/available to the end user? <= /td> |
Provide any supporting documents and information on the mechanism to sec= urely access the Solution including how to access the Solution in the event= of unexpected connection or other interruption and how availability of the= event is managed by the Solution. For data or file sharing and uploading provide information on the file f= ormats supported by the Solution. |
Demonstrate that the Solution is securely accessed by the end user via t= he provided mechanism. Demonstrate the Solution is accessed and available to the end user via p= rovided the mechanism if interrupted. Demonstrate that event will be available for appropriate length of time.= |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-PS-3 |
Number of concurrent sessions |
What is the peak number of concurrent user sessions the Solution can sup= port? |
Provide a value, show how the figure is derived (e.g. load test document= ation), including any considerations which may impact this value. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-PS-5 |
Response times |
What are the expected response times in a given percentage of cases for = a given operation e.g. Login or Open Patient Record? Provide different types of operation including command and query operati= ons. |
Provide a value, show how the figure is derived, including any considera= tions which may impact this value, e.g. Provide load test response time val= ues(preferably 90 percentile, Min, Max and Average) for the business critic= al transactions/workflows in the Solution. Indicate how they meet the SLAs.= |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-PS-6 |
Transactions per second |
How many user transactions per second are supported? Define what a user transaction consists of and how it is measured. = td> |
Provide a value, show how the figure is derived, including any considera= tions which may impact this value, e.g. provide the TPS achieved for the So= lution during the load test (with the volumetric workload mix identified).<= /p> |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-PS-7 |
Online service transaction volumes |
How many online batch transactions per second are supported? Define what a batch transaction consists of and how it is measured. <= /td> |
Provide a value, show how the figure is derived, including any considera= tions which may impact this value, e.g. provide batch job test execution re= port, indicating that batch processing works as expected and meets expected= performance level. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-PS-11 |
System Response Times |
Describe how measurements are calculated for system response times to me= et SLAs. |
Provide values, show how the figures are derived, including any consider= ations which may impact the values. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-PS-12 |
End User Interaction Timings |
Describe how measurements are calculated for end user interaction timing= s to meet SLAs. |
Provide values, show how the figures are derived (e.g. any page speed te= st carried out), including any considerations which may impact the values.<= /p> |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-PS-13 |
Interface Mechanism Response Times |
Describe how measurements are calculated for NHS IM1 service response ti= mes OR the Supplier system interfaces to meet SLAs. |
Provide IM1 values, show how the figures are derived, including any cons= iderations which may impact the values. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
|
GP-NFQ-PS-14 |
Video and audio and picture/image quality |
What are expected minimum requirements for good quality of video and aud= io and pictures/images sent via the system? |
Demonstrate the following minimum requirements (Hardware, memory, connec= tion) for supporting better video/image, audio quality with:
|
Demonstrate the following minimum requirements for better video / image,= audio quality:
|
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-VP-1 |
Model |
Describe what volumetric model(s) are provided to enable volume and perf= ormance tests encompassing load, ramp, stress and soak phases? |
Provide model(s), show how the model(s) are derived, including any consi= derations which may impact the model(s). |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-VP-2 |
V&P Performance |
What V&P work has been undertaken to ensure the Solution will meet e= xpected volume & performance SLAs. |
Provide statement of V&P assessment activities and associated test r= eports. |
Demonstrate systematic approach of how the evidence is derived. |
All |
GP-NFQ-VP-3 |
Spine |
What V&P testing of National Spine interactions (e.g. Personal Demog= raphics Service, Summary Care Record, e-Referral Service etc.) is planned, = to ensure Supplier=E2=80=99s Solution has no impact on National Spine servi= ces? |
Provide statement of testing and test coverage. |
Validate test coverage. |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-T-1 |
Test Plan |
Describe what test plan and schedule of non-functional testing is in pla= ce and with what associated documentation? |
Provide test plan to include sufficient details of scope and coverage.= p> |
Validate scope and non-functional test coverage. |
All |
GP-NFQ-T-2 |
Data Protection Testing |
What Data Protection testing is in place to show legislation is met? = |
Provide statement of test activity, the scope, coverage and attributable= legislation, e.g. provide DSP toolkit/Data Protection Policy. |
Validate scope and non-functional test coverage. |
All |
GP-NFQ-T-3 |
ITHC/Penetration Testing |
What ITHC/penetration testing is planned? Does the penetration test provider have one of these qualifications: Che= ck, CREST or TIGER? |
Provide statement of test activity, the scope, results (e.g. most recent= test report) and any remedial corrective actions or evidence. For new products a test before go-live is expected or for existing produ= cts results of a test completed within the last 12 months is acceptable. Te= sts should be undertaken by an approved (CHECK/CREST/TIGER) assessor. = td> |
Validate scope, process and testing, testing results and any recommendat= ions requiring corrective actions completed and acted upon. |
All |
GP-NFQ-T-4 |
Ready for Operations (RFO) Testing |
What RFO testing is planned? |
Provide details of RFO test scope and coverage, examples:
|
Validate test coverage. |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-R-1 |
Disaster recovery point objective (RPO) |
What RPO is possible with this Solution and how does that map to the req= uired SLA? |
Provide a value, show how the figure is derived, including any considera= tions which may impact this value. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-R-2 |
Disaster recovery time objective (RTO) |
What RTO is possible with this Solution and how does that map to the req= uired SLA? |
Provide a value, show how the figure is derived, including any considera= tions which may impact this value. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-B-1 |
Capability |
Describe in detail what backup and recovery mechanisms are implemented.<= /p> |
Confirm formal processes and mechanisms are in place. Provide design and documentation of implementation and operational proce= sses. Provide backup methodology including details of the data backup and data= verification strategy and the recovery procedures implemented. |
Demonstrate systematic approach and rationale of design, implementation = and processes. |
All |
GP-NFQ-B-2 |
Validation and Testing |
Describe what backup & recovery testing has been undertaken to demon= strate the mechanism and processes support your operational requirements.= p> |
Provide appropriate statement of backup & recovery/restore test acti= vity, coverage and outcomes. Provide examples of test outcome of how long it takes to back up a given= quantity of data and restore of the same information. |
Demonstrate systematic approach and rationale of design, implementation = and processes. |
All |
GP-NFQ-B-3 |
Periodic Testing |
Describe what periodic testing of backup and recovery is undertaken? = |
Provide the testing schedule of the backup and recovery procedure. = td> |
Demonstrate systematic approach and rationale of design, implementation = and processes. |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-A-1 |
Availability |
What is your service availability during agreed service hours. 90% ("one nine") 36.5 days 72 hours 16.8 hours |
Provide a value, show how the figure is derived, including any considera= tions which may impact this value. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-A-2 |
Service hours |
What are the standard business operating hours the Solution needs to be = available for users? |
Provide details of service hours, where a Solution may deliver a number = of capabilities, a declaration of appropriate service hours is required. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-A-3 |
Scheduled maintenance windows |
What are the requirements for any scheduled periods of unavailability to= perform Solution maintenance? |
Provide statement, the underlying rationale and any impact consideration= s. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-A-4 |
External system impacts |
Does the availability of any external systems affect this Solution? <= /td> |
Provide list of any external system/service associated with the Solution= and its availability impact on the Solution. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-A-5 |
Fault tolerance |
Describe any Single Points of Failure (SPOF) within the Solution or exte= rnal that the Solution relies upon for operation. |
Provide statement of any SPOF inherent within the Solution and where app= licable, any associated mitigation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-A-6 |
Degradability |
Describe the ability of the Solution to operate with reduced capacity or= functionality in the event of an unexpected event, e.g. site failure. <= /td> |
Provide details of any reduced operations capability, the levels of func= tionality and details of supporting documentation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-A-7 |
Disaster recovery minimum recovery operating level (MROL) |
In the event of a disaster what are the minimum business services that n= eed to be recovered to continue operating? |
Provide details of any reduced operations capability, the levels of func= tionality and details of supporting documentation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-RS-1 |
Service Level Agreements (SLAs) |
Describe how the hardware and software design supports the SLAs? |
Provide details of how Solution design supports the delivery of any SLA = declaration, including any impact considerations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-RS-2 |
Hardware Design |
Describe what level of resilience is provided in the hardware design? |
Provide documented evidence and rationale, including any impact consider= ations. e.g. provide details of data centres/regions/zones the Solution is = hosted on, resilient/highly-available infrastructure components, details of= any standby replica for fail-over etc. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-RS-3 |
Software Design |
Describe what level of resilience is provided in the software design? |
Provide documented evidence and rationale, including any impact consider= ations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-RS-4 |
Business Impact of Service Incidents |
Describe what mapping of business impacts of service incidents against l= evels of resilience has been undertaken? |
Provide documented evidence and rationale of foreseen (and/or real-life = incidents) to systems and their impact on the business services provided.= p> |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-RS-5 |
Component Failure Impact Analysis |
Describe what CIFA documentation has been produced? |
Confirm CIFA analysis has been completed and provide documented evidence= of analysis. This should include consideration of infrastructure/architect= ural/hardware/software design and assessing behaviour to demonstrate what/i= f scenarios have been considered (and the analysis documented) if individua= l components or services were to fail. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
|
GP-NFQ-RS-6 |
Network quality/performance |
Describe what hardware/software requirements are supported for good qual= ity of video, minimum resources required for good quality of video? |
Provide minimum specification to get better quality of video (minimum ca= ll speed/bandwidth 500 Kbps, Upload/download speed: min 2 Mbps upload, 5 Mb= ps download) and details of resources like data usage and that the costs as= sociated are at a minimum to claim economic benefits of your Solution. <= /td> |
Demonstrate the following minimum requirements for better network qualit= y:
Confirm that data usage and cost associated is at minimum level. |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-IG-1 |
Data retention |
What NHS data retention policies are enforced by the Solution? See = GP-IG-14.2-4 in the Information Governance Standard.<= /p> |
Provide documented evidence and rationale, including any impact consider= ations. or Provide list of policies. |
Demonstrate systematic approach and rationale of how evidence is derived= . or How well do the policies map to requirements and legislation. |
All |
GP-NFQ-IG-2 |
Data archiving |
What data archiving policies must be enforced by the Solution? |
Provide documented evidence and rationale, including any impact consider= ations. or Provide list of policies. |
Demonstrate systematic approach and rationale of how evidence is derived= . or How well do the policies map to requirements and legislation. |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-S-1 |
Data classification |
What is the classification of data being processed by the Solution? Note: Refer to document for defining data classification used in Clo= ud and <= em>https://www.gov.uk/government/publications/government-security-classific= ations. |
Completion of the risk assessment (Hosting and Infrastructure Standard).= Declaration of data classification. |
Confirm classification of data is as expected. |
All |
GP-NFQ-S-2 |
Encryption |
Describe what encryption is implemented to protect data at rest and= in transit and which Standards are implemented? |
Provide statement of encryption level. |
Confirm encryption is at minimum level. |
All |
GP-NFQ-S-3 |
Authentication |
Describe what authentication mechanisms are supported? |
Provide list of authentication mechanisms supported. |
Confirm authentication is appropriate for given Solution/ data. |
All |
GP-NFQ-S-4 |
Authentication retry limits and account locking |
Describe how protection against unauthorised authentication is impl= emented? |
Provide documented evidence and rationale, including any impact consider= ations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-S-5 |
Authorisation |
Describe what authorisation for user and Solution actions is implemented= ? |
Provide statement on implementation; what policies are in place and the = availability of associated documentation for review, upon request. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-S-6 |
Password Policy |
What password policies are enforced by the Solution? |
Provide details of the password policy for the Solution - including any = restrictions, strength, reset and any other considerations. |
Demonstrate systematic approach and rationale of how evidence is derived= . or How well do the policies map to requirements and legislation. |
All |
GP-NFQ-S-7 |
Data redaction and obfuscation |
Describe what mechanisms are in place for redaction and obfuscation of s= ensitive data? |
Provide documented evidence and rationale, including any impact consider= ations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-S-8 |
Protection from exploits |
Describe what protection from malicious use of the Solution is implement= ed, e.g. cross-site scripting, SQL injection prevention etc. |
Provide documented evidence and rationale, including any impact consider= ations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-SM-1 |
Processes |
Describe which ITIL aligned service management functions are operated.= p> |
Provide documented evidence and rationale, including any impact consider= ations of the ITIL processes adopted. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-SM-2 |
Tooling |
What Service Management toolset is implemented? |
Provide a list of tools and rationale for choosing. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-SM-3 |
Monitoring |
Describe what are the key resources, services and performance indicators= that can be monitored? |
Provide documented evidence and rationale, including any impact consider= ations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-SM-4 |
Alerting |
Who is alerted if a resource or service is not meeting the agreed s= ervice levels? |
Provide list of notified stakeholders, alerting thresholds mechanisms us= ed to trigger/raise alerts. Provide any alert reports/templates. |
List of appropriate stakeholders are notified. |
All |
GP-NFQ-SM-5 |
Service desk support hours |
What are the standard hours for service desk support? |
Provide the service/support hours. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-SM-6 |
Out of hours support |
What support is available outside of service desk hours, e.g. forums, pr= oblem ticketing. |
Provide documented evidence and rationale, including any impact consider= ations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-SM-7 |
Event logging |
What events are logged? |
Provide documented evidence of all events that are logged and rationale,= including any impact considerations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-CM-3 |
Capacity Management toolset |
What Capacity Management toolset is implemented and what is the scope of= information capture available. |
List of software and hardware tools used to measure and assess Solution = capacity. |
Tooling is comprehensive and effective and measuring and assessing Solut= ion capacity. |
All |
GP-NFQ-CM-4 |
Capacity Management |
Describe how the capacity of the Solution is managed and the what associ= ated reports that are produced, include management and solution process mod= els. |
Provide the planning/actions and toolsets used to ensure that the infras= tructure has adequate resources to support and maintain SLA targets. Include report examples of specific metrics used with forecasts. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
|
GP-NFQ-CM-5 |
Storage Capacity |
Describe how Solution is scalable and meets storage capacity needs? <= /td> |
Provide list of storage options, tools provided data transactions, scala= bility, and effective cost. |
Demonstrate that proposed Solution has made provisions for "enough" stor= age and network capacity for the data transactions (as specified by the bus= iness) flow between hardware components of the proposed Solution, especiall= y at peak usage times. |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-LCA-1 |
Accessibility |
Does your service/product comply with the Equality Act (Equality Act 2010: guidance) AND meet at least level A= A of the Web Content Accessibility Guidelines (WCAG 2.0)? For more guidance= see the NHS Digital Service Manual. |
Provide statement along with details of, and availability of, supporting= documentation that can be provided to confirm statements. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-LCA-5 |
Support for external audit |
What independent audit of the implemented Solution has been undertaken?<= /p> |
Provide Statement or report along with details of, and availability of, = supporting documentation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-LCA-6 |
Audited objects |
What entities in the Solution are audited? |
Provide a list of entities that are audited by the Solution. |
Appropriate entities are audited. |
All |
GP-NFQ-LCA-7 |
Traceability |
Which changes in the Solution are traceable, e.g. be able to tell what c= hanged, who changed it and when? |
Provide a list of changes that are traceable by the Solution. |
Appropriate changes are traceable. |
Applicable Framework(s) |
ID |
Sub-category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-I-1 |
Message Accuracy and Transfer |
Describe how message accuracy and transfer is achieved and maintained&nb= sp;(e.g. how is the data guaranteed not to be corrupt). |
Provide documented evidence and rationale, including any impact consider= ations. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
Applicable Framework(s) |
ID |
Sub-Category |
Description |
Evidence Example |
Assessment Criteria |
---|---|---|---|---|---|
All |
GP-NFQ-MW-1 |
General |
Describe how the Solution enables users the ability to work anywher= e and at any time to access and update information from a supported mobile = device and supporting improved productivity. e.g. a GP being able to work from home or using mobile devices to access= real time information. |
Provide detailed statement along with details of, and availability of, a= ny supporting documentation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-MW-2 |
Availability |
Describe how the Solution enables users to work "offline" when access to= central services is not available. e.g. when there is no network connection to central services from the re= mote device. |
Provide detailed statement along with details of, and availability of, a= ny supporting documentation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-MW-3 |
Data loss |
Describe how the Solution prevents data loss when disconnection from cen= tral services occurs. |
Provide detailed statement along with details of, and availability of, a= ny supporting documentation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All |
GP-NFQ-MW-4 |
Data integrity |
Describe how the Solution maintains data integrity when multiple devices= have been "offline" and attempt to update the central services with confli= cting information. |
Provide detailed statement along with details of, and availability of, a= ny supporting documentation. |
Demonstrate systematic approach and rationale of how evidence is derived= . |
All Suppliers Solutions delivering any Capabilities will need to meet th= is Standard.
Suppliers will not be assessed or assured on these Roadmap Items as part= of Onboarding
Roadmap Item | Standards and Capabilities | Status | Effective Date | Description | Change Type | Change Route |
---|---|---|---|---|---|---|
Chan= ges to Non-Functional Questions Standard |
Draft |
TBC |
Changes applied to Non-Functional= Questions (NFQs) to uplift the content and Applicable Framework(s) |
Uplift |
Managed Capacity - Other |