Skip to content

For care homes, pharmacies & GP practices

Still gathering DSPT evidence from spreadsheets and email threads?

Complete Your DSPT in Half the Time

A guided workflow that tells small care homes, pharmacies, and GP practices exactly what evidence they need — so you hit the 30 June deadline without the panic.

No spam. Unsubscribe any time. Privacy policy

Built for registered managers, pharmacy owners, and GP practice managers handling DSPT without a dedicated IT team.

Launching Spring 2026 — before the June deadline · Crocker Digital Ltd (No. 17008789)

The problem

21,500+ Small NHS Providers Face the Same Annual Struggle

Every year, the DSPT deadline creates months of stress for organisations that have no dedicated IT or compliance team.

45 questions, no guided workflow

The DSPT portal lists requirements but gives no help gathering evidence. You navigate it alone.

3-5 months of ad hoc effort

Evidence is scattered across training records, policies, risk logs, and email threads. No single view of progress.

£500-£2,000 for consultancy

Hiring a consultant every year is expensive — and means you never build the capability to do it yourself.

Miss the deadline, lose NHS access

Non-compliance by 30 June blocks NHSmail and NHS systems — disrupting medications, referrals, and discharges.

The solution

Know Exactly Where You Stand With Your DSPT

DSPTready guides you through every evidence requirement — in plain English — so nothing falls through the cracks.

Understand every question without the jargon

Each DSPT question explained in clear language, with examples of what good evidence looks like for your organisation type.

See exactly what’s missing at a glance

See your completion percentage, items not started, and items needing evidence — all in one view instead of 45 spreadsheet tabs.

Prove your team’s training in seconds

Track which staff have completed annual data security awareness training and which haven't — the requirement most providers scramble to prove.

Never be caught off guard by the deadline

Email reminders at 90, 60, and 30 days before the 30 June deadline. No more discovering in May that you're behind.

Cut year 2 effort in half

Unchanged evidence carries over to next year's submission. Year 2 takes half the effort of year 1.

Submit with confidence, not crossed fingers

Export a report aligned to the DSPT portal format so uploading your final submission is straightforward, not a scramble.

How DSPTready works

From Overwhelmed to Submitted in Four Steps

1

Select your category

Choose Category 3 or 4. DSPTready loads the exact questions and evidence requirements for your organisation type.

2

Work through each requirement

Plain-English guidance for every question. Upload evidence as you go — training certs, policies, risk logs.

3

Track your progress

The dashboard shows what's done, what's in progress, and what's missing. Staff training status at a glance.

4

Export and submit

When DSPTready launches, generate a submission-ready report and upload to the DSPT portal with confidence that nothing is missing.

Stop dreading the DSPT deadline

Designed to cost less than a single hour of consultant time per month. Join the waitlist to hear about launch pricing and get first access — built for small NHS providers.

No spam. Unsubscribe any time. Privacy policy

Why DSPTready

Built Different From Consultancy

Build capability, not dependency

Unlike consultancy, DSPTready teaches your team the process. Year 2 is faster because evidence carries forward and your team knows what to do.

Stay current with CAF changes

The DSPT's shift to Cyber Assessment Framework alignment means old templates don't work. DSPTready stays current with each year's requirements.

Priced for single-site operators

Designed for organisations with 15–60 staff and no IT department. A fraction of what consultants charge.

Free DSPT tools

Free Tools to Start Your DSPT Preparation

Need help today? Use these free tools — no account required. Prefer the full structured walkthrough? Join the waitlist above.

DSPT Deadline Calculator

Enter your organisation type and see your deadline, a countdown timer, and milestone dates for staying on track.

Use tool →

Evidence Checklist Generator

Select Category 3 or 4 and get a downloadable checklist of key evidence items to plan your submission.

Use tool →

DSPT Readiness Quiz

Answer 10 quick questions to see how prepared you are — with a gap analysis score and next steps.

Use tool →

View all free tools

Frequently Asked Questions About DSPT Compliance

What is the DSPT and who needs to complete it?
The Data Security and Protection Toolkit (DSPT) is an annual online self-assessment that every organisation accessing NHS patient data or systems must complete by 30 June. This includes care homes, pharmacies, GP practices, domiciliary care agencies, and dental practices in England. Under DSPT v8 (2025/26), it covers approximately 42 mandatory evidence items across 10 National Data Guardian standards to achieve "Approaching Standards" status.
What happens if you miss the DSPT deadline?
Missing the 30 June DSPT deadline can result in loss of access to NHSmail, NHS systems, and the ability to process NHS patient data. For care homes, this can disrupt medication management, referrals, and discharge communications. ICBs may also flag non-compliant organisations during contract reviews.
How many evidence items are in the DSPT for small providers?
Category 3 organisations (most small care homes and pharmacies) have approximately 42 mandatory evidence items across 10 National Data Guardian standards. GP practices fall under Category 4, which has a similar count but includes GP-specific items around clinical system access and NHS Spine usage. Completing all mandatory items achieves "Approaching Standards" status; all items (mandatory and optional) are needed for "Standards Met".
What evidence do you need for the DSPT?
DSPT evidence requirements vary by question but typically include: data security awareness training certificates for all staff, an up-to-date data security policy, a risk assessment log, business continuity plans, records of data access controls, and incident reporting procedures. Each evidence item must be uploaded to the DSPT portal individually.
What changed in the DSPT for 2024/25 onwards?
The DSPT shifted to Cyber Assessment Framework (CAF) alignment from 2024/25, meaning previous years' evidence templates may no longer match. New requirements include system administrator accountability, outcome-driven evidence (proving controls work, not just that policies exist), and updated training content. DSPT v8 (2025/26) adds further changes around access management.
Does DSPT apply to pharmacies and GP practices?
Yes. Community pharmacies fall under Category 3 and GP practices under Category 4 of the DSPT — they are different categories with different evidence requirements. Both must complete the toolkit annually by 30 June. Pharmacies accessing the NHS Spine or Electronic Prescription Service and GP practices accessing NHS clinical systems are all in scope. Each organisation submits independently, even if part of a group.
Is DSPTready free to use?
DSPTready is launching with free DSPT tools including a deadline calculator, evidence checklist generator, and readiness quiz. The full guided workflow — with evidence tracking, gap analysis, reminders, and staff training management — is designed to cost less than a single hour of consultant time per month. Join the waitlist for early-bird pricing.
How is DSPTready different from hiring a DSPT consultant?
DSPT consultants typically charge £500–£2,000 per submission and complete the process for you — useful but expensive for small providers doing this every year. DSPTready guides you through each evidence requirement yourself, with plain-English explanations, example evidence, and gap tracking. You build internal capability rather than depending on a consultant annually.
Who is behind DSPTready?
DSPTready is built by Crocker Digital Ltd (Company No. 17008789), a UK technology company focused on compliance tools for small organisations. The product is designed specifically for Category 3 and Category 4 NHS providers who need affordable, self-serve DSPT compliance support.
Is my data secure with DSPTready?
DSPTready takes data security seriously — you'd expect nothing less from a DSPT compliance tool. We collect only your email address for the waitlist. Our analytics use GoatCounter, which collects no personal data and uses no cookies. Full details are in our privacy policy. The production platform will be built with NHS-grade data handling standards.

Don't Leave Your DSPT to the Last Minute

Join the waitlist to hear about launch pricing and get first access to the step-by-step DSPT process for small NHS providers. One email when we launch — no spam.

No spam. Unsubscribe any time. Privacy policy