Enterprise AuthHub provides relationship-based access control (ReBAC) as a service for NHS organisations. Define who can access what, down to individual patient records and clinical workflows.
Model complex NHS access patterns using relationships โ ward membership, care team assignment, organisation hierarchy โ not just roles.
Permission checks complete in under 5ms at P95. Built on SpiceDB with CockroachDB backing for consistency and speed.
CIS2 authentication, ODS organisation validation, and NHS-compliant audit trails built in from day one.
Every organisation gets namespace-isolated authorization data. Cross-tenant access is impossible by construction.
Heat maps of permission usage, allow/deny trends, and stale policy detection โ all from your console dashboard.
Test authorization queries interactively. Save regression test suites that automatically validate after schema changes.
Three steps to production-ready authorization for your NHS system.
Authenticate with NHS CIS2, validate your ODS code, and receive API credentials in minutes.
Model your access patterns using SpiceDB's intuitive schema language. Preview changes with dry-run diffs.
Call our API from your application to check permissions. One HTTP request, sub-millisecond response.
GDPR Compliant
Right to erasure built-in
CIS2 Authenticated
NHS identity provider
7-Year Audit Trail
Immutable, tamper-proof
UK Data Residency
All data stays in the UK
Register in minutes. No procurement process required for the standard tier.
Get Started Free