Welcome to the Mydex Safe Secure Cloud Technical Documentation

Mydex is a community interest company serving citizens in all walks of their life and we equip them with easy to use, safe and secure tools to hold their own personal data and manage their interactions with the world around them independently. When a citizen signs up to the Mydex Safe Secure Cloud we refer to them as Members. We provide the Safe Secure Cloud entirely free of charge to our Members for Life. We enable Members to be independent, in control and to have agency across their life. This includes provisioning a MydexID and Personal Data Store for life and the ability to connect with sources of their personal data and manage their personal data and relationships seamlessly using a web application. Members also have access to a wealth of curated content and directories which they personalise and integrate into their life.

We provide Members with connectivity over the world wide web for the safe and secure sharing of their personal data, interactions and events with organisations who provide services to them to enable seamless services and eradicate friction, effort, risk and cost experienced by citizens and service providers today. We call this FERC.

We enable Members to create and manage their own personal networks for securing support from other Members and providing support to other Members. Typically these are friends and family who form part of their own circles of support during their life. Members control what others Members can see and do on their behalf transparently and in a fully audited manner.

Members remain in complete control at all times. Their control and agency is the embodiment of their Human Rights under their Rights under GDPR. Members are empowered to be an active participant in the provision of services to themselves and others by placing them at the centre and acting as the point of integration.

Any organisation can subscribe to the Safe Secure Cloud shared services directly using their existing application software to reduce the friction, effort risk and cost involved in providing services and sharing data and events as needed. This delivers a step change in citizens' experience and quality of outcomes whilst reducing their own administrative overheads. When an organisation signs up, we refer to them as Subscribers.

This directly leads to increased productivity for Subscribers and releases capacity to front line services through reduced administration costs.

The Safe Secure Cloud offers Subscribers the additional benefits of streamlining their own information governance and automatically delivers their GDPR compliance obligations and uses them to drive innovation.

Critically The Safe Secure Cloud dramatically reduces an organisations integration and operating costs as they only need to connect once per application within their own organisations enabling seamless data sharing internally. The Safe Secure Cloud operates as a shared service and utility.

Uniquely the Safe Secure Cloud enables organisations to use their direct connection with the citizens they serve to route information via the citizen to other service providers seamlessly who support the same citizen and who are connected to the Safe Secure Cloud under their own GDPR Compliant Data Sharing and Services Agreements.

The Safe Secure Cloud addresses the systemic issues faced by organisations today in delivering seamless joined up services across a network of service providers local, regionally, nationally and internationally. Subscribers come from across the public, third and independent sectors.

Subscribers can, when connected to the Safe Secure Cloud, work collaboratively together in a seamless manner without the burden and complexity of information sharing agreements between each other. Traditional information sharing agreements between two or more organisations are time consuming to develop and agree and even harder to maintain and monitor as the landscape of services and demand is constantly evolving and changing.

Subscribers can use the Safe Secure Cloud for operational service integration, management reporting, statutory and regulatory compliance reporting, research and innovation and as a two way feedback channel between themselves and citizens for citizen reported experience and outcome measures and design and development of service improvements.

Subscription Fees

Subscribers pay low cost subscription fees to use the Safe Secure Cloud, there are no transaction fees and it is a pay as they use basis with those fees linked to the number of individual's they connect to and the subscription services they use.

We provide configuration and support services for Subscribers and their application providers to ease connectivity and integration with the core SSC API Services. It is these core SSC API that enable interoperability across diverse systems and data standards.

The Safe Secure Cloud is available via the Crown Commercial Services G-Cloud and Digital Outcomes and Specialist Frameworks as well as the Dynamic Purchasing System Digital Co-Managed Care Framework available across Scotland.

Key Elements

The core technical elements that can be integrated and connected to are summarised below. Each of these have detailed documentation organised in a logical order to help orientate a Subscriber internal teams and their application providers. It is designed for technical teams including solutions architects, technical architects and software developers to help them understand the Safe Secure Cloud and get connected and integrated to secure the benefits available.

Implementation and integration can be undertaken on an incremental basis based on the Subscribers own needs and priorities.

	Personal Data Store - A Member's personal data store is designed to store the data about any aspect of a Member's life as expressed in data. Data about them, data about their activities, data about their interactions and relationships. The PDS is designed to store and manage a lifetime of data safely, securely and resiliently. Individuals access their Personal Data Store via their own Mydex People Application where they can view, use, organise their data for their own purposes. They can use their data personally and share never before seen collections of data with subscribers and other Members to serve their own needs and secure access to services or support areas of interest. Members can gain a complete picture of their life as captured in data and gain a sense of coherence and insight and reduce their own administration costs and get things done more easily. All Data in a Personal Data Store is encrypted uniquely per Personal Data Store. Any individual can become a Member entirely free of charge for life.
	Personal Data eXchange - Members can connect with any Subscriber they wish to using the Personal Data eXchange. This is under a uniform legal contract that we call a Data Sharing and Services Agreement which is fully GDPR compliant. This is between the Member and the Subscriber. Members are able to review, modify, approve or reject a Data Sharing and Services Agreement when presented by a Subscriber. Subscribers can plug into the Safe Secure Cloud for the purposes of seamless two way data and event exchange whether to deliver or collect data via secure APIs. Subscribers are able to define their GDPR compliant Data Sharing and Services Agreements to meet their needs. This sets out the use cases involved, the nature of data and services to be used and a full GDPR declaration of compliance. All connections between Members and Subscribers are uniquely encrypted and authenticated. Data Sharing and Services Agreements can be updated at any time with Member consent and Members can remove a Subscriber at any time. Subscribers can disconnect from a Member if and when services cease to be required. Mydex as the Safe Secure Cloud provider acts as the agent of the Member and enforces the approved Data Sharing and Services Agreements automatically. Mydex has no access or rights to their Members Personal Data Store beyond execution of their approved Data Sharing and Services Agreements and provision of the services to Members. All data moved across the Personal Data eXchange between the Member and the Subscriber is uniquely encrypted, no two connections and exchanges are ever the same. The Personal Data eXchange manages the integrity, linking and filing and updating a Members Personal Data Store automatically requiring no effort from Members or Subscribers The Personal Data eXchange offers Feature Blocks which are collections of data and services using consistent API structure to simplify integration and provides the Mydex Template System to enable configuration of unique combinations of data and formats to streamline third party integration and interoperability. All templates are available to any Subscriber as part of the shared services and interoperability mission of Mydex CIC.
	Identity as a Service - In addition to the provision of a MydexID to Members, Subscribers can make use of the Mydex Identity Federation to support single sign-on using the MydexID and through its orchestration services the integration of third party identity providers and mapping them to the Members MydexID. Members and Subscribers can set their level of Multi-Factor Authentication and register their mobile numbers, devices and email addresses against their MydexID to prevent misuse of any of these identifiers by bad actors. All use of a Member's Digital Identity services are logged within their Personal Data Store. Subscribers can relieve themselves of running their own identity provider services and focus on access control in the context of their own applications and services.
	Master Reference Data Services - There is a tremendous amount of duplication of effort across many organisations as they seek to validate data as part of their data entry forms and automated processing. We describe this type of data as Master Reference Data, it is not personal data but it affects everyone’s lives and the service providers who support them. In addition there are extensive sources of open curated content published in the form of online information about a wide range of matters and directory services that are traditionally presented on websites which are not integrated into the applications and services people use. Master Reference Data services are designed to reduce the friction, effort, risk and cost for Members and Subscribers who need to ensure the data they are using can be validated whether this is for something as simple as a postcode, or through to complex health conditions and diagnosis or want to seamless integrate curated content into their own applications. Members can view this information and use it at any time from within their own People Application and personalise their views and use of it based on their own profiles and preferences. Our goals are to deliver seamless access to directories and curated content and maintain a professionally managed, highly available and resilient set of master reference data services. To aid our Subscribers and their application providers in not reinventing the wheel or duplicate the effort of others and can achieve interoperability across different classification systems.